Permissions, Privileges, and Access Controls in Linux kernel - CVE-2011-1020
Published: February 28, 2011 / Updated: August 11, 2020
Vulnerability identifier: #VU45294
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2011-1020
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lseek, read, and write system calls.
How to mitigate CVE-2011-1020
Install update from vendor's website.
Sources
- http://openwall.com/lists/oss-security/2011/02/24/18
- http://openwall.com/lists/oss-security/2011/02/25/2
- http://seclists.org/fulldisclosure/2011/Jan/421
- http://secunia.com/advisories/43496
- http://securityreason.com/securityalert/8107
- http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/
- http://www.securityfocus.com/bid/46567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65693
- https://lkml.org/lkml/2011/2/10/21
- https://lkml.org/lkml/2011/2/7/368
- https://lkml.org/lkml/2011/2/7/404
- https://lkml.org/lkml/2011/2/7/414
- https://lkml.org/lkml/2011/2/7/466
- https://lkml.org/lkml/2011/2/7/474
- https://lkml.org/lkml/2011/2/9/417