CVE-2009-0834: CVE-2009-0834

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0834

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux Kernel审计系统audit_syscall_entry()系统权限许可和访问控制问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Syscall过滤技术通常基于由编号确定的syscall或具体参数来确认是否允许执行调用。在通过编号确定syscall时，64位Linux内核(x86_64)上syscall编号可能既映射到32位又映射到64位的syscall表，而这两种syscall表是不同的。由于用户空间进程是由syscall表控制的，因此可以绕过syscall编号检查，执行

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0834

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0834

Please Login to view more intelligence information

http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlx_refsource_CONFIRM
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ccbe495caa5e604b04d5a31d7459a6f6a76a756cx_refsource_CONFIRM
http://wiki.rpath.com/Advisories:rPSA-2009-0084x_refsource_CONFIRM
http://scary.beasts.org/security/CESA-2009-001.htmlx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=487990x_refsource_CONFIRM
http://www.securityfocus.com/bid/33951vdb-entryx_refsource_BID
http://secunia.com/advisories/34084third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35015third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35121third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35390third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/34962third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35120third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35011third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/37471third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35394third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35185third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/34981third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/34917third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1022153vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2009/dsa-1794vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2009/dsa-1800vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2009/dsa-1787vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/usn-751-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2009/3316vdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2009-0451.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2009-0473.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00000.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00002.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00001.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9600vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8508vdb-entrysignaturex_refsource_OVAL
http://www.securityfocus.com/archive/1/503610/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://exchange.xforce.ibmcloud.com/vulnerabilities/49061vdb-entryx_refsource_XF
http://marc.info/?l=linux-kernel&m=123579056530191&w=2mailing-listx_refsource_MLIST
http://marc.info/?l=linux-kernel&m=123579065130246&w=2mailing-listx_refsource_MLIST
http://www.securityfocus.com/archive/1/507985/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-0834

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0834

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2009-0834

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0834

III. Intelligence Information for CVE-2009-0834

IV. Related Vulnerabilities

V. Comments for CVE-2009-0834

Leave a comment