CVE-2009-2584
Published: 23 July 2009
Off-by-one error in the options_write function in drivers/misc/sgi-gru/gruprocfs.c in the SGI GRU driver in the Linux kernel 2.6.30.2 and earlier on ia64 and x86 platforms might allow local users to overwrite arbitrary memory locations and gain privileges via a crafted count argument, which triggers a stack-based buffer overflow.
Notes
Author | Note |
---|---|
mdeslaur | may only be vulnerable on particular SGI hardware PoC: http://grsecurity.net/~spender/exploit_demo.c |
Priority
Status
Package | Release | Status |
---|---|---|
linux-source-2.6.15 Launchpad, Ubuntu, Debian |
upstream |
Released
(2.6.32~rc7)
|
dapper |
Not vulnerable
|
|
hardy |
Does not exist
|
|
intrepid |
Does not exist
|
|
jaunty |
Does not exist
|
|
linux Launchpad, Ubuntu, Debian |
upstream |
Released
(2.6.32~rc7)
|
dapper |
Does not exist
|
|
hardy |
Not vulnerable
|
|
intrepid |
Released
(2.6.27-15.43)
|
|
jaunty |
Released
(2.6.28-16.55)
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 |