Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Vigil@nce: Linux kernel, denial of service under S/390

October 2008 by Vigil@nce

SYNTHESIS

A local attacker can use ptrace() under S/390 in order to stop the
system.

Gravity: 1/4

Consequences: denial of service of computer

Provenance: user shell

Means of attack: 1 attack

Ability of attacker: technician (2/4)

Confidence: confirmed by the editor (5/5)

Diffusion of the vulnerable configuration: medium (2/3)

Creation date: 09/10/2008

IMPACTED PRODUCTS

 Linux kernel

DESCRIPTION

The Linux kernel can be installed on ESA/390 systems (Enterprise
Systems Architecture/390, s390, s390x), which uses memory
addresses on 31 bits.

The s390 implementation of the ptrace() system call incorrectly
handles the padding of memory addresses, which stops the kernel.

A local attacker can thus stop the system.

CHARACTERISTICS

Identifiers: 438147, CVE-2008-1514, VIGILANCE-VUL-8157

http://vigilance.aql.fr/vulnerability/8157


See previous articles

    

See next articles


Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts