blob: 9f18d25ecebf02b33b17624cfe19552e6ed3e026 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
Candidate: CVE-2006-5173
References:
http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=47a5c6fa0e204a2b63309c648bb2fde36836c826
Description:
Alignment Check (AC) flag in EFLAGS is not saved/restored during task
switch, thus was leaking to other tasks. Those eventually died with a
SIGBUS.
Ubuntu-Description:
The task switching code did not save and restore EFLAGS of processes.
By starting a specially crafted executable, a local attacker could
exploit this to eventually crash many other running processes.
Notes:
incorrect optimization in some later 2.6.x kernel, reverted
Local DoS.
Are we sure this affects 2.6.17 and before? The CFI_ADJUST_CFA_OFFSET
doesn't seem to be present in these kernels.
Bugs:
upstream: released (2.6.18)
linux-2.6: released (2.6.18-1)
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.10-hoary-security: N/A
2.6.12-breezy-security: N/A
2.6.15-dapper-security: released (2.6.15-27.49)
2.6.17-edgy: released (2.6.17.1-10.34)
|
