PT-2009-3431 · Debian+5 · Debian+28

Eugene Teo

·

Published

2009-03-06

·

Updated

2020-08-26

·

CVE-2009-0834

CVSS v2.0

3.6

Low

VectorAV:L/AC:L/Au:N/C:P/I:P/A:N
The audit syscall entry function in the Linux kernel 2.6.28.7 and earlier on the x86 64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2009-0834
DSA-1787-1
DSA-1794-1
DSA-1800-1
RHSA-2009:0451
RHSA-2009:0459
RHSA-2009:0473
RHSA-2009_0459
RHSA-2009_0473
RHSA-2010:0079

Affected Products

Debian
Suse Linux Enterprise Desktop
Enterprise Linux Eus
Enterprise Linux Server
Enterprise Linux Workstation
Kernel
Kernel-Debug
Kernel-Debug-Devel
Kernel-Devel
Kernel-Doc
Kernel-Headers
Kernel-Hugemem
Kernel-Hugemem-Devel
Kernel-Kdump
Kernel-Kdump-Devel
Kernel-Largesmp
Kernel-Largesmp-Devel
Kernel-Pae
Kernel-Pae-Devel
Kernel-Smp
Kernel-Smp-Devel
Kernel-Xen
Kernel-Xen-Devel
Xnu Kernel
Suse Linux Enterprise Server
Suse Linux Enterprise Software Development Kit
Linux Kernel
Opensuse
Ubuntu