Back to search
CVE-2009-1895
Published: Jul 16, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to (1) conduct NULL pointer dereference attacks, (2) bypass the mmap_min_addr protection mechanism, or (3) defeat address space layout randomization (ASLR).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20100625 VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel
mailing-list
x_refsource_BUGTRAQ
http://wiki.rpath.com/Advisories:rPSA-2009-0111
x_refsource_CONFIRM
36131
third-party-advisory
x_refsource_SECUNIA
55807
vdb-entry
x_refsource_OSVDB
ADV-2009-1866
vdb-entry
x_refsource_VUPEN
RHSA-2009:1540
vendor-advisory
x_refsource_REDHAT
37471
third-party-advisory
x_refsource_SECUNIA
36759
third-party-advisory
x_refsource_SECUNIA
FEDORA-2009-8144
vendor-advisory
x_refsource_FEDORA
DSA-1844
vendor-advisory
x_refsource_DEBIAN
USN-807-1
vendor-advisory
x_refsource_UBUNTU
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
x_refsource_CONFIRM
RHSA-2009:1193
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:7826
vdb-entry
signature
x_refsource_OVAL
35647
vdb-entry
x_refsource_BID
FEDORA-2009-8264
vendor-advisory
x_refsource_FEDORA
20090724 rPSA-2009-0111-1 kernel
mailing-list
x_refsource_BUGTRAQ
http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html
x_refsource_MISC
MDVSA-2011:051
vendor-advisory
x_refsource_MANDRIVA
36051
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11768
vdb-entry
signature
x_refsource_OVAL
36045
third-party-advisory
x_refsource_SECUNIA
36116
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:1550
vendor-advisory
x_refsource_REDHAT
http://patchwork.kernel.org/patch/32598/
x_refsource_CONFIRM
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc3
x_refsource_CONFIRM
35801
third-party-advisory
x_refsource_SECUNIA
36054
third-party-advisory
x_refsource_SECUNIA
https://bugs.launchpad.net/bugs/cve/2009-1895
x_refsource_CONFIRM
DSA-1845
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:9453
vdb-entry
signature
x_refsource_OVAL
RHSA-2009:1438
vendor-advisory
x_refsource_REDHAT
ADV-2009-3316
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now