CVE - CVE-2007-4573

CVE-ID
CVE-2007-4573	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x before 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20070924 COSEINC Linux Advisory #2: IA32 System Call Emulation Vulnerability URL:http://www.securityfocus.com/archive/1/480451/100/0/threaded BUGTRAQ:20070926 Re: COSEINC Linux Advisory #2: IA32 System CallEmulation Vulnerability URL:http://www.securityfocus.com/archive/1/480705/100/0/threaded FULLDISC:20070924 COSEINC Linux Advisory #2: IA32 System Call URL:http://marc.info/?l=full-disclosure&m=119062587407908&w=2 MLIST:[linux-kernel] 20070921 Linux 2.6.22.7 URL:http://lkml.org/lkml/2007/9/21/512 MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7 URL:http://lkml.org/lkml/2007/9/21/513 CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7 CONFIRM:http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.35.3 CONFIRM:https://issues.rpath.com/browse/RPL-1754 DEBIAN:DSA-1381 URL:http://www.debian.org/security/2007/dsa-1381 DEBIAN:DSA-1378 URL:http://www.debian.org/security/2007/dsa-1378 DEBIAN:DSA-1504 URL:http://www.debian.org/security/2008/dsa-1504 FEDORA:FEDORA-2007-712 URL:https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00355.html FEDORA:FEDORA-2007-2298 URL:http://fedoranews.org/updates/FEDORA-2007-229.shtml MANDRIVA:MDKSA-2007:196 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:196 MANDRIVA:MDKSA-2007:195 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:195 MANDRIVA:MDVSA-2008:008 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:008 MANDRIVA:MDVSA-2008:105 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:105 REDHAT:RHSA-2007:0936 URL:http://www.redhat.com/support/errata/RHSA-2007-0936.html REDHAT:RHSA-2007:0937 URL:http://www.redhat.com/support/errata/RHSA-2007-0937.html REDHAT:RHSA-2007:0938 URL:http://www.redhat.com/support/errata/RHSA-2007-0938.html SUSE:SUSE-SA:2007:053 URL:http://www.novell.com/linux/security/advisories/2007_53_kernel.html SUSE:SUSE-SA:2007:064 URL:http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html UBUNTU:USN-518-1 URL:http://www.ubuntu.com/usn/usn-518-1 BID:25774 URL:http://www.securityfocus.com/bid/25774 OVAL:oval:org.mitre.oval:def:9735 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9735 VUPEN:ADV-2007-3246 URL:http://www.vupen.com/english/advisories/2007/3246 SECTRACK:1018748 URL:http://securitytracker.com/id?1018748 SECUNIA:26919 URL:http://secunia.com/advisories/26919 SECUNIA:26934 URL:http://secunia.com/advisories/26934 SECUNIA:26953 URL:http://secunia.com/advisories/26953 SECUNIA:26955 URL:http://secunia.com/advisories/26955 SECUNIA:26917 URL:http://secunia.com/advisories/26917 SECUNIA:26978 URL:http://secunia.com/advisories/26978 SECUNIA:26995 URL:http://secunia.com/advisories/26995 SECUNIA:26994 URL:http://secunia.com/advisories/26994 SECUNIA:27212 URL:http://secunia.com/advisories/27212 SECUNIA:27227 URL:http://secunia.com/advisories/27227 SECUNIA:27912 URL:http://secunia.com/advisories/27912 SECUNIA:29058 URL:http://secunia.com/advisories/29058
Assigning CNA
N/A
Date Entry Created
20070828	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070828)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.