[ Suresec Advisories ] - Linux kernel ia32 compatibility (ia64/x86-64) race condition

To: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [ Suresec Advisories ] - Linux kernel ia32 compatibility (ia64/x86-64) race condition
From: Suresec Advisories <advisories@xxxxxxxxxxx>
Date: Mon, 11 Jul 2005 08:26:21 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5) Gecko/20041221

Suresec Security Advisory  - #00004
10/07/05

Linux kernel ia32 compatibility race conditionAdvisory: http://www.suresec.org/advisories/adv4.pdf <http://www.suresec.org/advisories/adv3.pdf>


Description:

A race condition vulnerability has been found in the ia32 compatibilityexecve() systemcall. The race condition may lead to heap corruption.


Risk:

Exploitation of this vulnerability may results in panics, oopses orin the worst case code exection at ring 0.


Credit:

The vulnerability was discovered by Ilja van Sprundel.

Follow-Ups:
- Re: [Full-disclosure] [ Suresec Advisories ] - Linux kernel ia32 compatibility (ia64/x86-64) race condition
  - From: Juergen Schmidt