QwikSec

Security Database

CVE

CWE

Training

CVE-2009-0834

Published: Mar 6, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MANDRIVA

SUSE-SA:2009:028

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

http://scary.beasts.org/security/CESA-2009-001.html

x_refsource_MISC

linux-kernel-auditsyscallentry-sec-bypass(49061)

vdb-entry

x_refsource_XF

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

x_refsource_CONFIRM

[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_DEBIAN

20090516 rPSA-2009-0084-1 kernel

mailing-list

x_refsource_BUGTRAQ

SUSE-SA:2009:030

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:8508

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

SUSE-SA:2009:031

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_DEBIAN

oval:org.mitre.oval:def:9600

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_DEBIAN

[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=487990

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

http://wiki.rpath.com/Advisories:rPSA-2009-0084

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ccbe495caa5e604b04d5a31d7459a6f6a76a756c

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.