Wind River Support Network

HomeDefectsLIN6-2538
Fixed

LIN6-2538 : Security Advisory - linux - CVE-2013-2929

Created: Jan 9, 2014    Updated: Dec 3, 2018
Resolved Date: Feb 9, 2014
Previous ID: LIN3-28917
Found In Version: 6.0.0.3
Fix Version: 6.0.0.3
Severity: Low
Applicable for: Wind River Linux 6
Component/s: Kernel

Description

The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2929

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube