Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-3731

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain code that makes ptrace PTRACE_SETREGS and PTRACE_SINGLESTEP requests, related to the TRACE_IRQS_ON function, and possibly related to the arch_ptrace function.

See the

CVE page on Mitre.org for more details.

References

MISC: http://bugzilla.kernel...
MISC: http://www.securityfoc...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://osvdb.org/37286
MISC: http://www.debian.org/...
MISC: https://bugzilla.redha...
MISC: http://www.redhat.com/...
MISC: http://www.ubuntu.com/...
MISC: http://git.kernel.org/...
MISC: http://git.kernel.org/...
MISC: http://wiki.rpath.com/...
MISC: https://issues.rpath.c...
MISC: https://oval.cisecurit...

Launchpad.net

CVE 2007-3731

Related bugs

References