DSA-2348-1 systemtap -- severalID: oval:org.secpod.oval:def:600634 | Date: (C)2012-01-30 (M)2023-11-09 |
Class: PATCH | Family: unix |
Several vulnerabilities were discovered in SystemTap, an instrumentation system for Linux: CVE-2011-2503 It was discovered that a race condition in staprun could lead to privilege escalation. CVE-2010-4170 It was discovered that insufficient validation of environment variables in staprun could lead to privilege escalation. CVE-2010-4171 It was discovered that insufficient validation of module unloading could lead to denial of service.