278974 – (CVE-2009-2584) Kernel: SGI GRU off-by-one (CVE-2009-2584)

Bug 278974 (CVE-2009-2584) - Kernel: SGI GRU off-by-one (CVE-2009-2584)

Summary: Kernel: SGI GRU off-by-one (CVE-2009-2584)

Status:	RESOLVED FIXED

Alias:	CVE-2009-2584

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://git.kernel.org/?p=linux/kernel...
Whiteboard:	[linux <2.6.31.6] [gp <2.6.31-7]
Keywords:

Depends on:
Blocks:

Reported:	2009-07-24 20:02 UTC by Alex Legler (RETIRED)
Modified:	2013-09-15 18:45 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alex Legler (RETIRED) archtester

2009-07-24 20:02:02 UTC

CVE-2009-2584 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2584):
  Off-by-one error in the options_write function in
  drivers/misc/sgi-gru/gruprocfs.c in the SGI GRU driver in the Linux
  kernel 2.6.30.2 and earlier on ia64 and x86 platforms might allow
  local users to overwrite arbitrary memory locations and gain
  privileges via a crafted count argument, which triggers a stack-based
  buffer overflow.