The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Recent assessments:
timb-machine at March 05, 2021 12:47am UTC reported:
<https://www.portcullis.co.uk/security-research-and-downloads/security-advisories/cve-2014-0930/>
Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 3
aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc
archives.neohapsis.com/archives/bugtraq/2014-05/0031.html
www.ibm.com/support/docview.wss?uid=isg1IV58766
www.ibm.com/support/docview.wss?uid=isg1IV58840
www.ibm.com/support/docview.wss?uid=isg1IV58861
www.ibm.com/support/docview.wss?uid=isg1IV58888
www.ibm.com/support/docview.wss?uid=isg1IV58948
www.ibm.com/support/docview.wss?uid=isg1IV59045
www.ibm.com/support/docview.wss?uid=isg1IV59675
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0930
exchange.xforce.ibmcloud.com/vulnerabilities/92262
www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930