Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Производитель ПО
Наименование ПО
Linux Kernel
(Unknown)
Описание
Уязвимость существует в реализации файловой системы proc в ядре Linux из-за отсутствия ограничений на доступ к дереву каталогов процесса после выполнения данным процессом запуска программы setuid. Эксплуатация данной уязвимости позволяет локальным пользователям получить доступ к конфиденциальной информации или вызвать отказ в обслуживании, используя системные вызовы open, lseek, read и write.
Как исправить
Используйте рекомендации производителя.
Ссылки
MLIST ([linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/9/417
MLIST ([linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/474
MLIST ([linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/466
MLIST ([linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/414
MLIST ([linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/404
MLIST ([linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/368
MLIST ([linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/10/21
XF (kernel-procpid-security-bypass(65693)): http://xforce.iss.net/xforce/xfdb/65693
BID (46567): http://www.securityfocus.com/bid/46567
MISC (http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/): http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/
SREASON (8107): http://securityreason.com/securityalert/8107
FULLDISC (20110122 Proc filesystem and SUID-Binaries): http://seclists.org/fulldisclosure/2011/Jan/421
MLIST ([oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec): http://openwall.com/lists/oss-security/2011/02/25/2
MLIST ([oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec): http://openwall.com/lists/oss-security/2011/02/24/18
Источник: CVE
Наименование: CVE-2011-1020
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020
MLIST ([linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/474
MLIST ([linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/466
MLIST ([linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/414
MLIST ([linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/404
MLIST ([linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/7/368
MLIST ([linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec): https://lkml.org/lkml/2011/2/10/21
XF (kernel-procpid-security-bypass(65693)): http://xforce.iss.net/xforce/xfdb/65693
BID (46567): http://www.securityfocus.com/bid/46567
MISC (http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/): http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/
SREASON (8107): http://securityreason.com/securityalert/8107
FULLDISC (20110122 Proc filesystem and SUID-Binaries): http://seclists.org/fulldisclosure/2011/Jan/421
MLIST ([oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec): http://openwall.com/lists/oss-security/2011/02/25/2
MLIST ([oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec): http://openwall.com/lists/oss-security/2011/02/24/18
Источник: CVE
Наименование: CVE-2011-1020
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020