Vigil@nce: Linux kernel, memory reading via the emulation
June 2008 by Vigil@nce
SYNTHESIS
A local attacker can create a malicious program in order to read
memory fragments.
Gravity: 1/4
Consequences: data reading
Provenance: user shell
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 26/06/2008
Identifier: VIGILANCE-VUL-7914
IMPACTED PRODUCTS
– Linux kernel [confidential versions]
– Red Hat Enterprise Linux [confidential versions]
DESCRIPTION
The Linux kernel can emulate a 64 environment. In this case, the
copy_user() comes from the arch/x86/lib/copy_user_64.S file.
However, this function does not correctly handle error cases, and
returns to user uninitialized data.
A local attacker can therefore create a malicious program in order
to read memory fragments.
CHARACTERISTICS
Identifiers: 433938, BID-29942, CVE-2008-0598, RHSA-2008:0508-01,
RHSA-2008:0519-01, VIGILANCE-VUL-7914