Back to search
CVE-2010-3301
Published: Sep 22, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.36-rc4-git2 on the x86_64 platform does not zero extend the %eax register after the 32-bit entry path to ptrace is used, which allows local users to gain privileges by triggering an out-of-bounds access to the system call table using the %rax register. NOTE: this vulnerability exists because of a CVE-2007-4573 regression.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability
mailing-list
x_refsource_MLIST
[oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability
mailing-list
x_refsource_MLIST
ADV-2010-3117
vdb-entry
x_refsource_VUPEN
https://bugzilla.redhat.com/show_bug.cgi?id=634449
x_refsource_CONFIRM
MDVSA-2010:198
vendor-advisory
x_refsource_MANDRIVA
http://sota.gen.nz/compat2/
x_refsource_MISC
USN-1041-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SA:2011:007
vendor-advisory
x_refsource_SUSE
RHSA-2010:0842
vendor-advisory
x_refsource_REDHAT
MDVSA-2010:247
vendor-advisory
x_refsource_MANDRIVA
ADV-2011-0298
vdb-entry
x_refsource_VUPEN
42758
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2010:017
vendor-advisory
x_refsource_SUSE
ADV-2011-0070
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now