Bug 702915 (CVE-2011-2503) - VUL-0: CVE-2011-2503: systemtap TOCTOU race on module loading
Summary: VUL-0: CVE-2011-2503: systemtap TOCTOU race on module loading
Status: RESOLVED INVALID
Alias: CVE-2011-2503
Product: SUSE Security Incidents
Classification: Novell Products
Component: General (show other bugs)
Version: unspecified
Hardware: Other Other
: P5 - None : Normal
Target Milestone: ---
Assignee: Tony Jones
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2011-06-29 11:52 UTC by Ludwig Nussel
Modified: 2021-08-11 09:34 UTC (History)
2 users (show)

See Also:
Found By: Other
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ludwig Nussel 2011-06-29 11:52:22 UTC 
Your friendly security team received the following report via vendor-sec.
Please respond ASAP.
This issue is not public yet, please keep any information about it inside SUSE.
Note that build.opensuse.org *cannot* be used to prepare embargoed updates.

CVE-2011-2503

A time-of-check time-of-use (TOCTOU) race condition was found in the way
systemtap runtime tool (staprun) performed module loading. A small time gap
between performing module sanity checks and actual, real loading of the
module into the kernel, was present. A local user, member of the 'stapusr'
group could use this flaw to escalate their privileges.
Comment 1 Ludwig Nussel 2011-06-29 11:59:07 UTC 
CRD 7.7.

We are not affected as staprun is not setuid root
Comment 2 Ludwig Nussel 2011-07-04 13:04:14 UTC 
closing invalid