CVE-2011-1781
First published: Mon Aug 29 2011(Updated: )
SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing).
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Systemtap Systemtap | =1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://openwall.com/lists/oss-security/2011/05/20/2
- http://www.securityfocus.com/bid/47934
- https://bugzilla.redhat.com/show_bug.cgi?id=702687
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:155
- https://rhn.redhat.com/errata/RHSA-2011-0842.html
- http://secunia.com/advisories/44802
- http://sourceware.org/git/?p=systemtap.git%3Ba=commit%3Bh=fa2e3415185a28542d419a641ecd6cddd52e3cd9
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/systemtap
- canonical/systemtap systemtap
- version/systemtap systemtap/1.4