Upstream information
Description
The do_task_stat function in fs/proc/array.c in the Linux kernel before 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the start_code and end_code fields in the /proc/#####/stat file for a process executing a PIE binary.NVD CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Novell/SUSE information
Novell Bugzilla entry: 701254 SUSE Security Advisories:- SUSE-SA:2011:034, published Fri, 12 Aug 2011 13:00:00 +0000
- SUSE-SA:2011:040, published Tue, 20 Sep 2011 16:00:00 +0000
- SUSE-SU-2011:0899-1, published Fri, 12 Aug 2011 18:08:21 +0200 (CEST)
- SUSE-SU-2011:1058-1, published Wed, 21 Sep 2011 00:08:35 +0200 (CEST)
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IBM POWER |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7667 |
| SLE SDK 10 SP4 for IBM iSeries and IBM pSeries |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7667 |
| SUSE Linux Enterprise Server 10 SP4 for IBM POWER |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7667 |
| SUSE Linux Enterprise Server 10 SP3 DEBUGINFO |
| sles10-sp3-debuginfo.x86 sles10-sp3.x86 sle10-sp3-sdk.x86 ZYPP Patch Nr: 7734 |
| SUSE Linux Enterprise SDK 10 SP3 |
| sles10-sp3-debuginfo.x86 sles10-sp3.x86 sle10-sp3-sdk.x86 ZYPP Patch Nr: 7734 |
| SUSE Linux Enterprise Server 10 SP3 |
| sles10-sp3-debuginfo.x86 sles10-sp3.x86 sle10-sp3-sdk.x86 ZYPP Patch Nr: 7734 |
| SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T |
| sle10-sp4-sdk.x86-64 sled10-sp4.x86-64 sles10-sp4.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7665 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for AMD64 and Intel EM64T |
| sle10-sp4-sdk.x86-64 sled10-sp4.x86-64 sles10-sp4.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7665 |
| SLE SDK 10 SP4 for X86-64 |
| sle10-sp4-sdk.x86-64 sled10-sp4.x86-64 sles10-sp4.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7665 |
| SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T |
| sle10-sp4-sdk.x86-64 sled10-sp4.x86-64 sles10-sp4.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7665 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IPF |
| sles10-sp4-debuginfo.ia64 sle10-sp4-sdk.ia64 sles10-sp4.ia64 ZYPP Patch Nr: 7668 |
| SLE SDK 10 SP4 for IPF |
| sles10-sp4-debuginfo.ia64 sle10-sp4-sdk.ia64 sles10-sp4.ia64 ZYPP Patch Nr: 7668 |
| SUSE Linux Enterprise Server 10 SP4 for IPF |
| sles10-sp4-debuginfo.ia64 sle10-sp4-sdk.ia64 sles10-sp4.ia64 ZYPP Patch Nr: 7668 |
| SUSE Linux Enterprise Server 10 SP3 DEBUGINFO |
| sles10-sp3-debuginfo.ppc sle10-sp3-sdk.ppc sles10-sp3.ppc ZYPP Patch Nr: 7737 |
| SUSE Linux Enterprise SDK 10 SP3 |
| sles10-sp3-debuginfo.ppc sle10-sp3-sdk.ppc sles10-sp3.ppc ZYPP Patch Nr: 7737 |
| SUSE Linux Enterprise Server 10 SP3 |
| sles10-sp3-debuginfo.ppc sle10-sp3-sdk.ppc sles10-sp3.ppc ZYPP Patch Nr: 7737 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IBM zSeries 64bit |
| sles10-sp4-debuginfo.s390x sles10-sp4.s390x ZYPP Patch Nr: 7664 |
| SUSE Linux Enterprise Server 10 SP4 for IBM zSeries 64bit |
| sles10-sp4-debuginfo.s390x sles10-sp4.s390x ZYPP Patch Nr: 7664 |
| SUSE Linux Enterprise Desktop 10 SP4 for x86 |
| sles10-sp4-debuginfo.x86 sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 ZYPP Patch Nr: 7666 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for x86 |
| sles10-sp4-debuginfo.x86 sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 ZYPP Patch Nr: 7666 |
| SLE SDK 10 SP4 for x86 |
| sles10-sp4-debuginfo.x86 sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 ZYPP Patch Nr: 7666 |
| SUSE Linux Enterprise Server 10 SP4 for x86 |
| sles10-sp4-debuginfo.x86 sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 ZYPP Patch Nr: 7666 |
| SUSE Linux Enterprise Server 10 SP3 DEBUGINFO |
| sle10-sp3-sdk.ia64 sles10-sp3.ia64 sles10-sp3-debuginfo.ia64 ZYPP Patch Nr: 7735 |
| SUSE Linux Enterprise SDK 10 SP3 |
| sle10-sp3-sdk.ia64 sles10-sp3.ia64 sles10-sp3-debuginfo.ia64 ZYPP Patch Nr: 7735 |
| SUSE Linux Enterprise Server 10 SP3 |
| sle10-sp3-sdk.ia64 sles10-sp3.ia64 sles10-sp3-debuginfo.ia64 ZYPP Patch Nr: 7735 |
| SUSE Linux Enterprise Server 10 SP3 DEBUGINFO |
| sles10-sp3-debuginfo.x86-64 sles10-sp3.x86-64 sle10-sp3-sdk.x86-64 ZYPP Patch Nr: 7729 |
| SUSE Linux Enterprise SDK 10 SP3 SUSE Linux Enterprise Server for SAP 10 SP3 |
| sles10-sp3-debuginfo.x86-64 sles10-sp3.x86-64 sle10-sp3-sdk.x86-64 ZYPP Patch Nr: 7729 |
| SUSE Linux Enterprise SDK 10 SP3 |
| sles10-sp3-debuginfo.x86-64 sles10-sp3.x86-64 sle10-sp3-sdk.x86-64 ZYPP Patch Nr: 7729 |
| SUSE Linux Enterprise Server 10 SP3 DEBUGINFO |
| sles10-sp3.s390x sles10-sp3-debuginfo.s390x ZYPP Patch Nr: 7736 |
| SUSE Linux Enterprise Server 10 SP3 |
| sles10-sp3.s390x sles10-sp3-debuginfo.s390x ZYPP Patch Nr: 7736 |