Back to search
CVE-2010-0411
Published: Feb 8, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple integer signedness errors in the (1) __get_argv and (2) __get_compat_argv functions in tapset/aux_syscalls.stp in SystemTap 1.1 allow local users to cause a denial of service (script crash, or system crash or hang) via a process with a large number of arguments, leading to a buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FEDORA-2010-1373
vendor-advisory
x_refsource_FEDORA
38817
third-party-advisory
x_refsource_SECUNIA
38426
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=559719
x_refsource_CONFIRM
39656
third-party-advisory
x_refsource_SECUNIA
http://sourceware.org/bugzilla/show_bug.cgi?id=11234
x_refsource_CONFIRM
[oss-security] 20100204 systemtap DoS issue (CVE-2010-0411)
mailing-list
x_refsource_MLIST
38680
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9675
vdb-entry
signature
x_refsource_OVAL
SUSE-SR:2010:010
vendor-advisory
x_refsource_SUSE
RHSA-2010:0125
vendor-advisory
x_refsource_REDHAT
1023664
vdb-entry
x_refsource_SECTRACK
38120
vdb-entry
x_refsource_BID
RHSA-2010:0124
vendor-advisory
x_refsource_REDHAT
38765
third-party-advisory
x_refsource_SECUNIA
FEDORA-2010-1720
vendor-advisory
x_refsource_FEDORA
ADV-2010-1001
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now