Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ASLR安全绕过漏洞
Vulnerability Description
Red Hat Enterprise Linux(RHEL)是美国红帽(Red Hat)公司维护和发布的一套面向企业用户的Linux操作系统。 Red Hat Enterprise Linux (RHEL) 5和6版本;Fedora 15和16版本中的Linux kernel中的某些Red Hat补丁中的‘ExecShield’功能中存在漏洞,该漏洞源于程序未正确地利用32位可执行文件处理对多个共享库的使用。通过利用其中一个库的可预测基地址,上下文相关的攻击者利用该漏洞绕过ASLR保护机制。
CVSS Information
N/A
Vulnerability Type
N/A