Shared Library ASLR Bypass Vulnerability

Shared Library ASLR Bypass Vulnerability

CVE-2012-1568 · LOW Severity

AV:L/AC:M/AU:N/C:N/I:P/A:N

The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.