mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-16 20:27:21 +00:00
859 B
859 B
CVE-2013-0914
Description
The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application containing a sigaction system call.
POC
Reference
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:176
- http://www.ubuntu.com/usn/USN-1788-1
- http://www.ubuntu.com/usn/USN-1797-1
Github
No PoCs found on GitHub currently.