CVE-2007-0257

Name of the Vulnerable Software and Affected Versions grsecurity PaX (affected versions not specified)

Description The issue concerns an unspecified vulnerability in the expand stack function, potentially allowing local users to gain privileges through unspecified vectors. However, the grsecurity developer has disputed this issue, stating that the function in question is trivial and has been checked for vulnerabilities. The developer also references a past disclosure that was not proven. As of 20070120, the original researcher released demonstration code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.