Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23826

HistoryApr 10, 2020 - 12:37 a.m.

Privilege Escalation

2020-04-1000:37:14

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

6

EPSS

0

Percentile

5.1%

systemtap is vulnerable to privilege escalation. A race condition was discovered in SystemTap that could allow users in the stapusr group to elevate privileges to that of members of the stapdev group (and hence root), bypassing directory confinement restrictions and allowing them to insert arbitrary SystemTap kernel modules.

References

secunia.com/advisories/34441

secunia.com/advisories/34479

secunia.com/advisories/34548

support.avaya.com/elmodocs2/security/ASA-2009-110.htm

www.debian.org/security/2009/dsa-1755

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2009-0373.html

www.vupen.com/english/advisories/2009/0907

access.redhat.com/errata/RHSA-2009:0373

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613

EPSS

0

Percentile

5.1%

Related for VERACODE:23826

redhat1 nessus5 openvas13 seebug1 securityvulns2 cve1 debiancve1 osv1 prion1 debian1 centos1 ubuntucve1 cvelist1 oraclelinux1 nvd1