CVE-2009-0784

Race condition in the SystemTap stap tool 0.0.20080705 and 0.0.20090314 allows local users in the stapusr group to insert arbitrary SystemTap kernel modules and gain privileges via unknown vectors.
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.3 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:N/I:C/A:C
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
VendorProductVersion
systemtapsystemtap
0.0.20080705
systemtapsystemtap
0.0.20090314
debiandebian_linux
4.0
debiandebian_linux
5.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
systemtap
bullseye
4.4-2
fixed
etch
not-affected
bookworm
4.8-2
fixed
sid
5.1-4
fixed
trixie
5.1-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
systemtap
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
ignored
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
dne
Common Weakness Enumeration
References
http://secunia.com/advisories/34441
http://secunia.com/advisories/34479
http://secunia.com/advisories/34548
http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm
http://www.debian.org/security/2009/dsa-1755
http://www.redhat.com/support/errata/RHSA-2009-0373.html
http://www.vupen.com/english/advisories/2009/0907
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613
http://secunia.com/advisories/34441
http://secunia.com/advisories/34479
http://secunia.com/advisories/34548
http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm
http://www.debian.org/security/2009/dsa-1755
http://www.redhat.com/support/errata/RHSA-2009-0373.html
http://www.vupen.com/english/advisories/2009/0907
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613