QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-0835

Back to search

CVE-2009-0835

Published: Mar 6, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod, a related issue to CVE-2009-0342 and CVE-2009-0343.

VendorProductVersions

n/a

n/a

affected
n/a

References

35390
third-party-advisory
x_refsource_SECUNIA
34786
third-party-advisory
x_refsource_SECUNIA
MDVSA-2009:118
vendor-advisory
x_refsource_MANDRIVA
SUSE-SA:2009:028
vendor-advisory
x_refsource_SUSE
SUSE-SA:2009:030
vendor-advisory
x_refsource_SUSE
USN-751-1
vendor-advisory
x_refsource_UBUNTU
33948
vdb-entry
x_refsource_BID
35185
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2009:031
vendor-advisory
x_refsource_SUSE
SUSE-SA:2009:021
vendor-advisory
x_refsource_SUSE
34084
third-party-advisory
x_refsource_SECUNIA
DSA-1800
vendor-advisory
x_refsource_DEBIAN
34917
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:0451
vendor-advisory
x_refsource_REDHAT
35121
third-party-advisory
x_refsource_SECUNIA
35394
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now