Lucene search
Redhat.comRH:CVE-2019-11191HistoryApr 04, 2020 - 5:25 p.m.
CVE-2019-11191
2020-04-0417:25:21
redhat.com
access.redhat.com
10
0.0004 Low
EPSS
Percentile
5.1%
The Linux kernel allows local users to bypass ASLR protections for setuid a.out programs when CONFIG_IA32_AOUT is enabled and ia32_aout module is loaded, because install_exec_creds() is called too late in the load_aout_binary() in fs/binfmt_aout.c. Due to this, the ptrace_may_access() check may have a race condition with install_exec_creds() when reading /proc/pid/stat file and reveal information on addresses of kernel structures, henceforth defeating the KASLR protection.
Related
prion
prion
Race condition
2019-04-12 00:29:00
ubuntu
ubuntu
Linux kernel (HWE) vulnerability
2019-06-04 00:00:00
Linux kernel vulnerability
2019-06-04 00:00:00
Linux kernel (HWE) vulnerability
2019-06-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4007-2)
2019-06-05 00:00:00
Ubuntu: Security Advisory (USN-4006-2)
2019-06-05 00:00:00
Ubuntu: Security Advisory (USN-4007-1)
2019-06-05 00:00:00
nessus
nessus
Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerability (USN-4007-2)
2019-06-05 00:00:00
Ubuntu 18.10 : linux, linux-aws, linux-gcp, linux-kvm, linux-raspi2 vulnerability (USN-4006-1)
2019-06-05 00:00:00
Ubuntu 18.04 LTS : Linux kernel vulnerability (USN-4007-1)
2019-06-05 00:00:00
cve
cve
CVE-2019-11191
2019-04-12 00:29:00
debiancve
debiancve
CVE-2019-11191
2019-04-12 00:29:00
nvd
nvd
CVE-2019-11191
2019-04-12 00:29:00
ubuntucve
ubuntucve
CVE-2019-11191
2019-04-11 00:00:00
cvelist
cvelist
CVE-2019-11191
2019-04-11 23:07:29
cloudfoundry
cloudfoundry
USN-4008-2: AppArmor update | Cloud Foundry
2019-06-18 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2019-06-18 00:00:00
photon
photon