systemtap-1.3-9.AXS3
エラータID: AXSA:2011-272:02
Release date:
Friday, July 29, 2011 - 12:22
Subject:
systemtap-1.3-9.AXS3
Affected Channels:
Asianux Server 3 for x86_64
Asianux Server 3 for x86
Severity:
High
Description:
SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the system.
Security issues fixed with this release:
CVE-2011-2503No information available at the time of writing, please refer to the CVE links below.
Solution:
Update packages.
CVEs:
CVE-2011-2503
The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module initialization.
The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module initialization.
Additional Info:
N/A
Download:
Asianux Server 3 for x86
- systemtap-1.3-9.AXS3.i386.rpm
MD5: e4ed5118722b6dabdf8e5fe391bd2aab
SHA-256: 869c670123c691227d0326761ecebeabfd3937e7e30702a1dc5ac16dd7cee1f4
Size: 2.53 MB - systemtap-runtime-1.3-9.AXS3.i386.rpm
MD5: 69352ba568d025073a29131debbff71d
SHA-256: 4a4ce7e4a9b268816bb922ea75d03ff3ea38178421cdcda69a54926bad892f17
Size: 93.03 kB
Asianux Server 3 for x86_64
- systemtap-1.3-9.AXS3.x86_64.rpm
MD5: 62cb29871378455c058d854f47829dee
SHA-256: 50d280faae088cc9ff535c57e2c5c3843d8d5c84c37558b252e19c1e37087fa0
Size: 2.46 MB - systemtap-runtime-1.3-9.AXS3.x86_64.rpm
MD5: 0a071a8133374a575c825482b98cbc35
SHA-256: b2929dd80eabee009e26500f4d249435623cfeb58c779bef2c34b92ee84e73c5
Size: 96.34 kB
日本語