CVE-2010-0412

Name of the Vulnerable Software and Affected Versions SystemTap version 1.1

Description The issue is related to the stap-server in SystemTap, where it does not properly restrict the value of the -B option, also known as the BUILD option. This allows attackers to have an unspecified impact through vectors associated with executing the make program.

Recommendations For SystemTap version 1.1, consider restricting the use of the -B option to minimize the risk of exploitation. As a temporary workaround, limit the execution of the make program to trusted inputs until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.