CVE-2009-0834

Severity

36%

Complexity

39%

Confidentiality

81%

The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

CVSS 2.0 Base Score 3.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:N).

Overview

First reported 15 years ago

2009-03-06 11:30:00

Last updated 6 years ago

2018-10-10 19:31:00

Affected Software

Linux Kernel 2.6.0

2.6.0

Linux Kernel 2.6.1

2.6.1

Linux Kernel 2.6.2

2.6.2

Linux Kernel 2.6.3

2.6.3

Linux Kernel 2.6.4

2.6.4

Linux Kernel 2.6.5

2.6.5

Linux Kernel 2.6.6

2.6.6

Linux Kernel 2.6.7

2.6.7

Linux Kernel 2.6.8

2.6.8

Linux Kernel 2.6.8.1

2.6.8.1

Linux Kernel 2.6.9

2.6.9

Linux Kernel 2.6.9 Release Candidate 1

2.6.9

Linux Kernel 2.6.9 Release Candidate 2

2.6.9

Linux Kernel 2.6.9 Release Candidate 3

2.6.9

Linux Kernel 2.6.9 Release Candidate 4

2.6.9

Linux Kernel 2.6.10

2.6.10

Linux Kernel 2.6.11

2.6.11

Linux Kernel 2.6.11.1

2.6.11.1

Linux Kernel 2.6.11.2

2.6.11.2

Linux Kernel 2.6.11.3

2.6.11.3

Linux Kernel 2.6.11.4

2.6.11.4

Linux Kernel 2.6.11.5

2.6.11.5

Linux Kernel 2.6.11.6

2.6.11.6

Linux Kernel 2.6.11.7

2.6.11.7

Linux Kernel 2.6.11.8

2.6.11.8

Linux Kernel 2.6.11.9

2.6.11.9

Linux Kernel 2.6.11.10

2.6.11.10

Linux Kernel 2.6.11.11

2.6.11.11

Linux Kernel 2.6.11.12

2.6.11.12

Linux Kernel 2.6.12

2.6.12

Linux Kernel 2.6.12.1

2.6.12.1

Linux Kernel 2.6.12.2

2.6.12.2

Linux Kernel 2.6.12.3

2.6.12.3

Linux Kernel 2.6.12.4

2.6.12.4

Linux Kernel 2.6.12.5

2.6.12.5

Linux Kernel 2.6.12.6

2.6.12.6

Linux Kernel 2.6.13

2.6.13

Linux Kernel 2.6.13.1

2.6.13.1

Linux Kernel 2.6.13.2

2.6.13.2

Linux Kernel 2.6.13.3

2.6.13.3

Linux Kernel 2.6.13.4

2.6.13.4

Linux Kernel 2.6.13.5

2.6.13.5

Linux Kernel 2.6.14

2.6.14

Linux Kernel 2.6.14.1

2.6.14.1

Linux Kernel 2.6.14.2

2.6.14.2

Linux Kernel 2.6.14.3

2.6.14.3

Linux Kernel 2.6.14.4

2.6.14.4

Linux Kernel 2.6.14.5

2.6.14.5

Linux Kernel 2.6.14.6

2.6.14.6

Linux Kernel 2.6.14.7

2.6.14.7

Linux Kernel 2.6.15

2.6.15

Linux Kernel 2.6.15.1

2.6.15.1

Linux Kernel 2.6.15.2

2.6.15.2

Linux Kernel 2.6.15.3

2.6.15.3

Linux Kernel 2.6.15.4

2.6.15.4

Linux Kernel 2.6.15.5

2.6.15.5

Linux Kernel 2.6.15.6

2.6.15.6

Linux Kernel 2.6.15.7

2.6.15.7

Linux Kernel 2.6.16

2.6.16

Linux Kernel 2.6.16 Release Candidate 1

2.6.16

Linux Kernel 2.6.16.1

2.6.16.1

Linux Kernel 2.6.16.2

2.6.16.2

Linux Kernel 2.6.16.3

2.6.16.3

Linux Kernel 2.6.16.4

2.6.16.4

Linux Kernel 2.6.16.5

2.6.16.5

Linux Kernel 2.6.16.6

2.6.16.6

Linux Kernel 2.6.16.7

2.6.16.7

Linux Kernel 2.6.16.8

2.6.16.8

Linux Kernel 2.6.16.9

2.6.16.9

Linux Kernel 2.6.16.10

2.6.16.10

Linux Kernel 2.6.16.11

2.6.16.11

Linux Kernel 2.6.16.12

2.6.16.12

Linux Kernel 2.6.16.13

2.6.16.13

Linux Kernel 2.6.16.14

2.6.16.14

Linux Kernel 2.6.16.15

2.6.16.15

Linux Kernel 2.6.16.16

2.6.16.16

Linux Kernel 2.6.16.17

2.6.16.17

Linux Kernel 2.6.16.18

2.6.16.18

Linux Kernel 2.6.16.19

2.6.16.19

Linux Kernel 2.6.16.20

2.6.16.20

Linux Kernel 2.6.16.21

2.6.16.21

Linux Kernel 2.6.16.22

2.6.16.22

Linux Kernel 2.6.16.23

2.6.16.23

Linux Kernel 2.6.16.24

2.6.16.24

Linux Kernel 2.6.16.25

2.6.16.25

Linux Kernel 2.6.16.26

2.6.16.26

Linux Kernel 2.6.16.27

2.6.16.27

Linux Kernel 2.6.16.28

2.6.16.28

Linux Kernel 2.6.16.29

2.6.16.29

Linux Kernel 2.6.16.30

2.6.16.30

Linux Kernel 2.6.16.31

2.6.16.31

Linux Kernel 2.6.16.32

2.6.16.32

Linux Kernel 2.6.16.33

2.6.16.33

Linux Kernel 2.6.16.34

2.6.16.34

Linux Kernel 2.6.16.35

2.6.16.35

Linux Kernel 2.6.16.36

2.6.16.36

Linux Kernel 2.6.16.37

2.6.16.37

Linux Kernel 2.6.16.38

2.6.16.38

Linux Kernel 2.6.16.39

2.6.16.39

Linux Kernel 2.6.16.40

2.6.16.40

Linux Kernel 2.6.16.41

2.6.16.41

Linux Kernel 2.6.16.42

2.6.16.42

Linux Kernel 2.6.16.43

2.6.16.43

Linux Kernel 2.6.16.44

2.6.16.44

Linux Kernel 2.6.16.45

2.6.16.45

Linux Kernel 2.6.16.46

2.6.16.46

Linux Kernel 2.6.16.47

2.6.16.47

Linux Kernel 2.6.16.48

2.6.16.48

Linux Kernel 2.6.16.49

2.6.16.49

Linux Kernel 2.6.16.50

2.6.16.50

Linux Kernel 2.6.16.51

2.6.16.51

Linux Kernel 2.6.16.52

2.6.16.52

Linux Kernel 2.6.16.53

2.6.16.53

Linux Kernel 2.6.16.54

2.6.16.54

Linux Kernel 2.16.55

2.6.16.55

Linux Kernel 2.6.16.56

2.6.16.56

Linux Kernel 2.6.16.57

2.6.16.57

Linux Kernel 2.6.16.58

2.6.16.58

Linux Kernel 2.6.16.59

2.6.16.59

Linux Kernel 2.6.16.60

2.6.16.60

Linux Kernel 2.6.16.61

2.6.16.61

Linux Kernel 2.6.16.62

2.6.16.62

Linux Kernel 2.6.17

2.6.17

Linux Kernel 2.6.17 Release Candidate 1

2.6.17

Linux Kernel 2.6.17 Release Candidate 2

2.6.17

Linux Kernel 2.6.17 Release Candidate 3

2.6.17

Linux Kernel 2.6.17 Release Candidate 4

2.6.17

Linux Kernel 2.6.17 Release Candidate 5

2.6.17

Linux Kernel 2.6.17 Release Candidate 6

2.6.17

Linux Kernel 2.6.17.1

2.6.17.1

Linux Kernel 2.6.17.2

2.6.17.2

Linux Kernel 2.6.17.3

2.6.17.3

Linux Kernel 2.6.17.4

2.6.17.4

Linux Kernel 2.6.17.5

2.6.17.5

Linux Kernel 2.6.17.6

2.6.17.6

Linux Kernel 2.6.17.7

2.6.17.7

Linux Kernel 2.6.17.8

2.6.17.8

Linux Kernel 2.6.17.9

2.6.17.9

Linux Kernel 2.6.17.10

2.6.17.10

Linux Kernel 2.6.17.11

2.6.17.11

Linux Kernel 2.6.17.12

2.6.17.12

Linux Kernel 2.6.17.13

2.6.17.13

Linux Kernel 2.6.17.14

2.6.17.14

Linux Kernel 2.6.18

2.6.18

Linux Kernel 2.6.18 Release Candidate 1

2.6.18

Linux Kernel 2.6.18 Release Candidate 2

2.6.18

Linux Kernel 2.6.18 Release Candidate 3

2.6.18

Linux Kernel 2.6.18 Release Candidate 4

2.6.18

Linux Kernel 2.6.18 Release Candidate 5

2.6.18

Linux Kernel 2.6.18 Release Candidate 6

2.6.18

Linux Kernel 2.6.18 Release Candidate 7

2.6.18

Linux Kernel 2.6.18.1

2.6.18.1

Linux Kernel 2.6.18.2

2.6.18.2

Linux Kernel 2.6.18.3

2.6.18.3

Linux Kernel 2.6.18.4

2.6.18.4

Linux Kernel 2.6.18.5

2.6.18.5

Linux Kernel 2.6.18.6

2.6.18.6

Linux Kernel 2.6.18.7

2.6.18.7

Linux Kernel 2.6.18.8

2.6.18.8

Linux Kernel 2.6.19

2.6.19

Linux Kernel 2.6.19.1

2.6.19.1

Linux Kernel 2.6.19.2

2.6.19.2

Linux Kernel 2.6.19.3

2.6.19.3

Linux Kernel 2.6.19.4

2.6.19.4

Linux Kernel 2.6.19.5

2.6.19.5

Linux Kernel 2.6.19.6

2.6.19.6

Linux Kernel 2.6.19.7

2.6.19.7

Linux Kernel 2.6.20

2.6.20

Linux Kernel 2.6.20.1

2.6.20.1

Linux Kernel 2.6.20.2

2.6.20.2

Linux Kernel 2.6.20.3

2.6.20.3

Linux Kernel 2.6.20.4

2.6.20.4

Linux Kernel 2.6.20.5

2.6.20.5

Linux Kernel 2.6.20.6

2.6.20.6

Linux Kernel 2.6.20.7

2.6.20.7

Linux Kernel 2.6.20.8

2.6.20.8

Linux Kernel 2.6.20.9

2.6.20.9

Linux Kernel 2.6.20.10

2.6.20.10

Linux Kernel 2.6.20.11

2.6.20.11

Linux Kernel 2.6.20.12

2.6.20.12

Linux Kernel 2.6.20.13

2.6.20.13

Linux Kernel 2.6.20.14

2.6.20.14

Linux Kernel 2.6.20.15

2.6.20.15

Linux Kernel 2.6.20.16

2.6.20.16

Linux Kernel 2.6.20.17

2.6.20.17

Linux Kernel 2.6.20.18

2.6.20.18

Linux Kernel 2.6.20.19

2.6.20.19

Linux Kernel 2.6.20.20

2.6.20.20

Linux Kernel 2.6.20.21

2.6.20.21

Linux Kernel 2.6.21

2.6.21

Linux Kernel 2.6.21.1

2.6.21.1

Linux Kernel 2.6.21.2

2.6.21.2

Linux Kernel 2.6.21.3

2.6.21.3

Linux Kernel 2.6.21.4

2.6.21.4

Linux Kernel 2.6.21.5

2.6.21.5

Linux Kernel 2.6.21.6

2.6.21.6

Linux Kernel 2.6.21.7

2.6.21.7

Linux Kernel 2.6.22

2.6.22

Linux Kernel 2.6.22.1

2.6.22.1

Linux Kernel 2.6.22.2

2.6.22.2

Linux Kernel 2.6.22.3

2.6.22.3

Linux Kernel 2.6.22.4

2.6.22.4

Linux Kernel 2.6.22.5

2.6.22.5

Linux Kernel 2.6.22.6

2.6.22.6

Linux Kernel 2.6.22.7

2.6.22.7

Linux Kernel 2.6.22.8

2.6.22.8

Linux Kernel 2.6.22.9

2.6.22.9

Linux Kernel 2.6.22.10

2.6.22.10

Linux Kernel 2.6.22.11

2.6.22.11

Linux Kernel 2.6.22.12

2.6.22.12

Linux Kernel 2.6.22.13

2.6.22.13

Linux Kernel 2.6.22.14

2.6.22.14

Linux Kernel 2.6.22.15

2.6.22.15

Linux Kernel 2.6.22.16

2.6.22.16

Linux Kernel 2.6.22.17

2.6.22.17

Linux Kernel 2.6.22.18

2.6.22.18

Linux Kernel 2.6.22.19

2.6.22.19

Linux Kernel 2.6.22.20

2.6.22.20

Linux Kernel 2.6.22.21

2.6.22.21

Linux Kernel 2.6.22.22

2.6.22.22

Linux Kernel 2.6.23

2.6.23

Linux Kernel 2.6.23 Release Candidate 1

2.6.23

Linux Kernel 2.6.23 release candidate 2

2.6.23

Linux Kernel 2.6.23.1

2.6.23.1

Linux Kernel 2.6.23.2

2.6.23.2

Linux Kernel 2.6.23.3

2.6.23.3

Linux Kernel 2.6.23.4

2.6.23.4

Linux Kernel 2.6.23.5

2.6.23.5

Linux Kernel 2.6.23.6

2.6.23.6

Linux Kernel 2.6.23.7

2.6.23.7

Linux Kernel 2.6.23.8

2.6.23.8

Linux Kernel 2.6.23.9

2.6.23.9

Linux Kernel 2.6.23.10

2.6.23.10

Linux Kernel 2.6.23.11

2.6.23.11

Linux Kernel 2.6.23.12

2.6.23.12

Linux Kernel 2.6.23.13

2.6.23.13

Linux Kernel 2.6.23.14

2.6.23.14

Linux Kernel 2.6.23.16

2.6.23.15

Linux Kernel 2.6.23.16

2.6.23.16

Linux Kernel 2.6.23.17

2.6.23.17

Linux Kernel 2.6.24

2.6.24

Linux Kernel 2.6.24 Release Candidate 1

2.6.24

Linux Kernel 2.6.24 Release Candidate 2

2.6.24

Linux Kernel 2.6.24 Release Candidate 3

2.6.24

Linux Kernel 2.6.24 Release Candidate 4

2.6.24

Linux Kernel 2.6.24 Release Candidate 5

2.6.24

Linux Kernel 2.6.24.1

2.6.24.1

Linux Kernel 2.6.24.2

2.6.24.2

Linux Kernel 2.6.24.3

2.6.24.3

Linux Kernel 2.6.24.4

2.6.24.4

Linux Kernel 2.6.24.5

2.6.24.5

Linux Kernel 2.6.24.6

2.6.24.6

Linux Kernel 2.6.24.7

2.6.24.7

Linux Kernel 2.6.25

2.6.25

Linux Kernel 2.6.25.1

2.6.25.1

Linux Kernel 2.6.25.2

2.6.25.2

Linux Kernel 2.6.25.3

2.6.25.3

Linux Kernel 2.6.25.4

2.6.25.4

Linux Kernel 2.6.25.5

2.6.25.5

Linux Kernel 2.6.25.6

2.6.25.6

Linux Kernel 2.6.25.7

2.6.25.7

Linux Kernel 2.6.25.8

2.6.25.8

Linux Kernel 2.6.25.9

2.6.25.9

Linux Kernel 2.6.25.10

2.6.25.10

Linux Kernel 2.6.25.11

2.6.25.11

Linux Kernel 2.6.25.12

2.6.25.12

Linux Kernel 2.6.25.13

2.6.25.13

Linux Kernel 2.6.25.14

2.6.25.14

Linux Kernel 2.6.25.15

2.6.25.15

Linux Kernel 2.6.25.16

2.6.25.16

Linux Kernel 2.6.25.17

2.6.25.17

Linux Kernel 2.6.25.18

2.6.25.18

Linux Kernel 2.6.25.19

2.6.25.19

Linux Kernel 2.6.25.20

2.6.25.20

Linux Kernel 2.6.26

2.6.26

Linux Kernel 2.6.26 Release Candidate 4

2.6.26

Linux Kernel 2.6.26.1

2.6.26.1

Linux Kernel 2.6.26.2

2.6.26.2

Linux Kernel 2.6.26.3

2.6.26.3

Linux Kernel 2.6.26.4

2.6.26.4

Linux Kernel 2.6.26.5

2.6.26.5

Linux Kernel 2.6.26.6

2.6.26.6

Linux Kernel 2.6.26.7

2.6.26.7

Linux Kernel 2.6.26.8

2.6.26.8

Linux Kernel 2.6.27

2.6.27

Linux Kernel 2.6.27 Release Candidate 1

2.6.27

Linux Kernel 2.6.27 Release Candidate 2

2.6.27

Linux Kernel 2.6.27 Release Candidate 3

2.6.27

Linux Kernel 2.6.27 Release Candidate 4

2.6.27

Linux Kernel 2.6.27 Release Candidate 5

2.6.27

Linux Kernel 2.6.27 Release Candidate 6

2.6.27

Linux Kernel 2.6.27 Release Candidate 7

2.6.27

Linux Kernel 2.6.27 Release Candidate 8

2.6.27

Linux Kernel 2.6.27 Release Candidate 9

2.6.27

Linux Kernel 2.6.27.1

2.6.27.1

Linux Kernel 2.6.27.2

2.6.27.2

Linux Kernel 2.6.27.3

2.6.27.3

Linux Kernel 2.6.27.4

2.6.27.4

Linux Kernel 2.6.27.5

2.6.27.5

Linux Kernel 2.6.27.6

2.6.27.6

Linux Kernel 2.6.27.7

2.6.27.7

Linux Kernel 2.6.27.8

2.6.27.8

Linux Kernel 2.6.27.9

2.6.27.9

Linux Kernel 2.6.27.10

2.6.27.10

Linux Kernel 2.6.27.11

2.6.27.11

Linux Kernel 2.6.27.12

2.6.27.12

Linux Kernel 2.6.27.13

2.6.27.13

Linux Kernel 2.6.27.14

2.6.27.14

Linux Kernel 2.6.27.15

2.6.27.15

Linux Kernel 2.6.27.16

2.6.27.16

Linux Kernel 2.6.27.17

2.6.27.17

Linux Kernel 2.6.27.18

2.6.27.18

Linux Kernel 2.6.27.19

2.6.27.19

Linux Kernel 2.6.27.20

2.6.27.20

Linux Kernel 2.6.27.21

2.6.27.21

Linux Kernel 2.6.27.22

2.6.27.22

Linux Kernel 2.6.27.23

2.6.27.23

Linux Kernel 2.6.27.24

2.6.27.24

Linux Kernel 2.6.27.25

2.6.27.25

Linux Kernel 2.6.27.26

2.6.27.26

Linux Kernel 2.6.27.27

2.6.27.27

Linux Kernel 2.6.27.28

2.6.27.28

Linux Kernel 2.6.27.29

2.6.27.29

Linux Kernel 2.6.27.30

2.6.27.30

Linux Kernel 2.6.27.31

2.6.27.31

Linux Kernel 2.6.27.32

2.6.27.32

Linux Kernel 2.6.27.33

2.6.27.33

Linux Kernel 2.6.27.34

2.6.27.34

Linux Kernel 2.6.27.35

2.6.27.35

Linux Kernel 2.6.27.36

2.6.27.36

Linux Kernel 2.6.27.37

2.6.27.37

Linux Kernel 2.6.27.38

2.6.27.38

Linux Kernel 2.6.27.39

2.6.27.39

Linux Kernel 2.6.27.40

2.6.27.40

Linux Kernel 2.6.27.41

2.6.27.41

Linux Kernel 2.6.27.42

2.6.27.42

Linux Kernel 2.6.27.43

2.6.27.43

Linux Kernel 2.6.27.44

2.6.27.44

Linux Kernel 2.6.27.45

2.6.27.45

Linux Kernel 2.6.27.51

2.6.27.51

Linux Kernel 2.6.27.52

2.6.27.52

Linux Kernel 2.6.27.53

2.6.27.53

Linux Kernel 2.6.27.54

2.6.27.54

Linux Kernel 2.6.28

2.6.28

Linux Kernel 2.6.28.1

2.6.28.1

Linux Kernel 2.6.28.2

2.6.28.2

Linux Kernel 2.6.28.3

2.6.28.3

Linux Kernel 2.6.28.4

2.6.28.4

Linux Kernel 2.6.28.5

2.6.28.5

Linux Kernel 2.6.28.6

2.6.28.6

Linux Kernel

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ccbe495caa5e604b04d5a31d7459a6f6a76a756c

Vendor Advisory

SUSE-SA:2009:028

SUSE-SA:2009:030

SUSE-SA:2009:031

[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes

[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole

[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole

RHSA-2009:0459

RHSA-2009:0473

http://scary.beasts.org/security/CESA-2009-001.html

34084

Vendor Advisory

34917

Vendor Advisory

34962

Vendor Advisory

34981

Vendor Advisory

35011

Vendor Advisory

35015

Vendor Advisory

35120

Vendor Advisory

35121

Vendor Advisory

35185

Vendor Advisory

35390

Vendor Advisory

35394

Vendor Advisory

37471

Vendor Advisory

http://wiki.rpath.com/Advisories:rPSA-2009-0084

DSA-1787

DSA-1794

DSA-1800

MDVSA-2009:118

RHSA-2009:0451

20090516 rPSA-2009-0084-1 kernel

20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

33951

1022153

USN-751-1

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

ADV-2009-3316

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=487990

linux-kernel-auditsyscallentry-sec-bypass(49061)

oval:org.mitre.oval:def:8508

oval:org.mitre.oval:def:9600

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.