Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-0028

Опубликовано: 15 нояб. 2008
Источник: redhat
CVSS2: 6.2

Описание

The robust futex implementation in the Linux kernel before 2.6.28 does not properly handle processes that make exec system calls, which allows local users to cause a denial of service or possibly gain privileges by writing to a memory location in a child process.

Отчет

This issue did not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not have support for robust futexes. It did not affect Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG as they have the backported fixes. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2012-0107.html.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise MRG 2realtime-kernelNot affected
Red Hat Enterprise Linux 5kernelFixedRHSA-2012:010709.02.2012
Red Hat Enterprise Linux 5.6 EUS - Server OnlykernelFixedRHSA-2012:035806.03.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=771764kernel: futex: clear robust_list on execve

6.2 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-0028

ubuntu
почти 13 лет назад

The robust futex implementation in the Linux kernel before 2.6.28 does not properly handle processes that make exec system calls, which allows local users to cause a denial of service or possibly gain privileges by writing to a memory location in a child process.

nvd логотип

CVE-2012-0028

nvd
почти 13 лет назад

The robust futex implementation in the Linux kernel before 2.6.28 does not properly handle processes that make exec system calls, which allows local users to cause a denial of service or possibly gain privileges by writing to a memory location in a child process.

debian логотип

CVE-2012-0028

debian
почти 13 лет назад

The robust futex implementation in the Linux kernel before 2.6.28 does ...

github логотип

GHSA-9qx9-h259-89mm

github
около 3 лет назад

The robust futex implementation in the Linux kernel before 2.6.28 does not properly handle processes that make exec system calls, which allows local users to cause a denial of service or possibly gain privileges by writing to a memory location in a child process.

oracle-oval логотип

ELSA-2012-0107

oracle-oval
больше 13 лет назад

ELSA-2012-0107: kernel security and bug fix update (IMPORTANT)

6.2 Medium

CVSS2