Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0835

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2009-0835
Last Modified 19 Mar 2012 12:00:00
Published 06 Mar 2009 06:30:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-0835

Summary

The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod, a related issue to CVE-2009-0342 and CVE-2009-0343.

Vulnerable Systems

Operating System

  • Linux Kernel 2.6.25

  • Linux Kernel 2.6.25.1

  • Linux Kernel 2.6.25.10

  • Linux Kernel 2.6.25.11

  • Linux Kernel 2.6.25.12

  • Linux Kernel 2.6.25.2

  • Linux Kernel 2.6.25.3

  • Linux Kernel 2.6.25.4

  • Linux Kernel 2.6.25.5

  • Linux Kernel 2.6.25.6

  • Linux Kernel 2.6.25.7

  • Linux Kernel 2.6.25.8

  • Linux Kernel 2.6.25.9


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=487255

UBUNTU - USN-751-1

BID - 33948

REDHAT - RHSA-2009:0451

MANDRIVA - MDVSA-2009:118

DEBIAN - DSA-1800

SECUNIA - 35394

SECUNIA - 35390

SECUNIA - 35185

SECUNIA - 35121

SECUNIA - 34917

SECUNIA - 34786

SECUNIA - 34084

MISC - http://scarybeastsecurity.blogspot.com/2009/02/linux-kernel-minor-seccomp.html

MISC - http://scary.beasts.org/security/CESA-2009-004.html

MISC - http://scary.beasts.org/security/CESA-2009-001.html

MLIST - [oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole

MLIST - [linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole

MLIST - [linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes

MLIST - [linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole

SUSE - SUSE-SA:2009:031

SUSE - SUSE-SA:2009:030

SUSE - SUSE-SA:2009:028

SUSE - SUSE-SA:2009:021


Last Updated: 27 May 2016 10:49:34