CVE-2009-0784

EUVD-2009-0782
Race condition in the SystemTap stap tool 0.0.20080705 and 0.0.20090314 allows local users in the stapusr group to insert arbitrary SystemTap kernel modules and gain privileges via unknown vectors.
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.3 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:N/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Affected Products (NVD)
VendorProductVersion
systemtapsystemtap
0.0.20080705
systemtapsystemtap
0.0.20090314
debiandebian_linux
4.0
debiandebian_linux
5.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
systemtap
bookworm
4.8-2
fixed
bullseye
4.4-2
fixed
etch
not-affected
sid
5.1-4
fixed
trixie
5.1-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
systemtap
dapper
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
not-affected
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
not-affected
Common Weakness Enumeration
References
http://secunia.com/advisories/34441
http://secunia.com/advisories/34479
http://secunia.com/advisories/34548
http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm
http://www.debian.org/security/2009/dsa-1755
http://www.redhat.com/support/errata/RHSA-2009-0373.html
http://www.vupen.com/english/advisories/2009/0907
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613
http://secunia.com/advisories/34441
http://secunia.com/advisories/34479
http://secunia.com/advisories/34548
http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm
http://www.debian.org/security/2009/dsa-1755
http://www.redhat.com/support/errata/RHSA-2009-0373.html
http://www.vupen.com/english/advisories/2009/0907
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613