CVE-2014-0930 Information
Description
The ptrace system call in IBM AIX 5.3 6.1 and 7.1 and VIOS 2.2.x allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Reference
http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html http://www.ibm.com/support/docview.wss?uid=isg1IV58766 http://www.ibm.com/support/docview.wss?uid=isg1IV58840 http://www.ibm.com/support/docview.wss?uid=isg1IV58861 http://www.ibm.com/support/docview.wss?uid=isg1IV58888 http://www.ibm.com/support/docview.wss?uid=isg1IV58948 http://www.ibm.com/support/docview.wss?uid=isg1IV59045 http://www.ibm.com/support/docview.wss?uid=isg1IV59675 https://exchange.xforce.ibmcloud.com/vulnerabilities/92262 https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0930/
Share on: