Back to search
CVE-2009-1388
Published: Jul 5, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle simultaneous execution of the do_coredump function, which allows local users to cause a denial of service (deadlock) via vectors involving the ptrace system call and a coredumping thread.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
36131
third-party-advisory
x_refsource_SECUNIA
37471
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:8680
vdb-entry
signature
x_refsource_OVAL
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
x_refsource_CONFIRM
RHSA-2009:1193
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/attachment.cgi?id=346615
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=504263
x_refsource_CONFIRM
https://bugzilla.redhat.com/attachment.cgi?id=346742
x_refsource_CONFIRM
55679
vdb-entry
x_refsource_OSVDB
oval:org.mitre.oval:def:8625
vdb-entry
signature
x_refsource_OVAL
35559
vdb-entry
x_refsource_BID
[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock
mailing-list
x_refsource_MLIST
ADV-2009-3316
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now