Security Advisory

CVE-2013-0914

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-22 10:00:00

Last updated 2024-08-06 14:41:48

Assigner Chrome

State PUBLISHED

Description

The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application containing a sigaction system call.

← Browse all CVEs View on cve.org ↗