CVE-2012-0056

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.2.2

Description The issue concerns the mem write function in the Linux kernel. When Address Space Layout Randomization (ASLR) is disabled, this function does not properly check permissions when writing to the /proc/(pid)/mem file. This allows local users to gain privileges by modifying process memory. This has been demonstrated by the Mempodipper exploit.

Recommendations For Linux kernel versions prior to 3.2.2, update to version 3.2.2 or later to resolve the issue. As a temporary workaround, consider enabling ASLR to minimize the risk of exploitation.