VDB
CVE-2009-0835
CVE-2009-0835
PUBLISHED
CVSS 3.5999999046325684 LOW
The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod, a related issue to CVE-2009-0342 and CVE-2009-0343.
EPSS 0.08% · 23.0th percentile
Risk Scores
CVSS 2.0
3.5999999046325684
EPSS Score
0.08%
23.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 2.6.25.12, 2.6.25, 2.6.25.1 |
| n/a | n/a | * |
Exploit Intelligence
- CIRCL confirmed: CVE-2009-0835 (circl-sighting)
- 35185 (circl)
- [linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole (circl)
- 35390 (circl)
- http://scarybeastsecurity.blogspot.com/2009/02/linux-kernel-minor-seccomp.html (circl)
- 34786 (circl)
- MDVSA-2009:118 (circl)
- 35394 (circl)
- SUSE-SA:2009:028 (circl)
- SUSE-SA:2009:030 (circl)
…and 15 more exploits
Timeline
- Mar 2, 2009 PoC Published
- Mar 6, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 2, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- 35390 third-party-advisory
- http://scarybeastsecurity.blogspot.com/2009/02/linux-kernel-minor-seccomp.html url
- 34786 third-party-advisory
- MDVSA-2009:118 vendor-advisory
- [oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole mailing-list
- SUSE-SA:2009:028 vendor-advisory
- http://scary.beasts.org/security/CESA-2009-001.html url
- SUSE-SA:2009:030 vendor-advisory
- USN-751-1 vendor-advisory
- 33948 vdb
- 35185 third-party-advisory
- [linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole mailing-list
- SUSE-SA:2009:031 vendor-advisory
- SUSE-SA:2009:021 vendor-advisory
- 34084 third-party-advisory
- DSA-1800 vendor-advisory
- 34917 third-party-advisory
- [linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes mailing-list
- [linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole mailing-list
- http://scary.beasts.org/security/CESA-2009-004.html url
…and 5 more