Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 261589 (CVE-2009-0835) - Kernel: seccomp: 32/64 syscall hole (CVE-2009-0835)
Summary: Kernel: seccomp: 32/64 syscall hole (CVE-2009-0835)
Alias: CVE-2009-0835
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
Whiteboard: [linux <] [linux >=2.6.28 <2...
Depends on:
Reported: 2009-03-07 17:24 UTC by Robert Buchholz (RETIRED)
Modified: 2013-09-15 20:07 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Robert Buchholz (RETIRED) gentoo-dev 2009-03-07 17:24:57 UTC
CVE-2009-0835 (
  The __secure_computing function in kernel/seccomp.c in the seccomp
  subsystem in the Linux kernel and earlier on the x86_64
  platform, when CONFIG_SECCOMP is enabled, does not properly handle
  (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process
  making a 32-bit syscall, which allows local users to bypass intended
  access restrictions via crafted syscalls that are misinterpreted as
  (a) stat or (b) chmod, a related issue to CVE-2009-0342 and