Vulnerability: Improper Use of get_dumpable Function in Linux Kernel

Vulnerability: Improper Use of get_dumpable Function in Linux Kernel

CVE-2013-2929 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.