DWARF Data Read Vulnerability in SystemTap

DWARF Data Read Vulnerability in SystemTap

CVE-2012-0875 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:N/A:C

SystemTap 1.7, 1.6.7, and probably other versions, when unprivileged mode is enabled, allows local users to obtain sensitive information from kernel memory or cause a denial of service (kernel panic and crash) via vectors related to crafted DWARF data, which triggers a read of an invalid pointer.

Learn more about our User Device Pen Test.