Joined: 12 May 2004
|Posted: Thu Jun 05, 2014 1:26 am Post subject: [ GLSA 201406-04 ] SystemTap: Denial of Service
|Gentoo Linux Security Advisory
Title: SystemTap: Denial of Service (GLSA 201406-04)
Date: June 05, 2014
A vulnerability in SystemTap could allow a local attacker to create
a Denial of Service condition.
SystemTap is a kernel profiling and instrumentation tool.
Vulnerable: < 2.0
Unaffected: >= 2.0
Architectures: All supported architectures
SystemTap does not properly handle DWARF expressions when unwinding the
A local attacker with SystemTap permissions could trigger a kernel
panic, causing a Denial of Service condition.
Disabling unprivileged mode is a temporary workaround for this
All SystemTap users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-util/systemtap-2.0"