NVD

Id
48673  
Name
CVE-2009-1388  
Description
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle simultaneous execution of the do_coredump function, which allows local users to cause a denial of service (deadlock) via vectors involving the ptrace system call and a coredumping thread.  
Reject
 
CVSS Version
2  
CVSS Score
4.9  
Severity
Medium  
CVSS Base Score
4.9  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-07  
Published
2009-07-05  
Modified Date
2012-03-19  
Seq
2009-1388  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
245835 48673 CVE-2009-1388 [oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock  View
245836 48673 CVE-2009-1388 oval:org.mitre.oval:def:8625  View
245837 48673 CVE-2009-1388 oval:org.mitre.oval:def:8680  View
245838 48673 CVE-2009-1388 RHSA-2009:1193  View
245839 48673 CVE-2009-1388 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components  View
245840 48673 CVE-2009-1388 35559  View
245841 48673 CVE-2009-1388 http://www.vmware.com/security/advisories/VMSA-2009-0016.html  View
245842 48673 CVE-2009-1388 ADV-2009-3316  View
245843 48673 CVE-2009-1388 https://bugzilla.redhat.com/attachment.cgi?id=346615  View
245844 48673 CVE-2009-1388 https://bugzilla.redhat.com/attachment.cgi?id=346742  View
245845 48673 CVE-2009-1388 https://bugzilla.redhat.com/show_bug.cgi?id=504263  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40967 JVNDB-2009-001973 Linux kernel の ptrace_start 関数におけるサービス運用妨害 (DoS) の脆弱性 Linux kernel の ptrace_start 関数には、do_coredump 関数の同時実行を適切に処理しないため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2009-1388 38819 CVE-2009-1388 48673 4.9 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001973.html 2009-07-05 2009-10-09 View