CVE-2012-1568

CVSS v2.0

1.9

Low

Vector

AV:L/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Linux (RHEL) versions 5 and 6 Fedora versions 15 and 16

Description The ExecShield feature in a certain Red Hat patch for the Linux kernel does not properly handle use of many shared libraries by a 32-bit executable file. This makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.

Recommendations For Red Hat Enterprise Linux (RHEL) versions 5 and 6, consider applying a patch to fix the ExecShield feature. For Fedora versions 15 and 16, consider applying a patch to fix the ExecShield feature. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2012_1426

CVE-2012-1568

RHSA-2012:1426

RHSA-2012_1426

RHSA-2013:0168

RHSA-2013_0168

Affected Products

Centos

Fedora

Linux Kernel

Red Hat

Suse

CVE-2012-1568

Related Identifiers

Affected Products

References · 27