csaf_redhat - rhsa-2010

rhsa-2010_0895

Vulnerability from csaf_redhat

Published

2010-11-17 14:51

Modified

2024-11-22 03:54

Summary

Red Hat Security Advisory: systemtap security update

Notes

Topic

Updated systemtap packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

SystemTap is an instrumentation system for systems running the Linux kernel, version 2.6. Developers can write scripts to collect data on the operation of the system. staprun, the SystemTap runtime tool, is used for managing SystemTap kernel modules (for example, loading them). It was discovered that staprun did not properly sanitize the environment before executing the modprobe command to load an additional kernel module. A local, unprivileged user could use this flaw to escalate their privileges. (CVE-2010-4170) Note: On Red Hat Enterprise Linux 4, an attacker must be a member of the stapusr group to exploit this issue. Also note that, after installing this update, users already in the stapdev group must be added to the stapusr group in order to be able to run the staprun tool. Red Hat would like to thank Tavis Ormandy for reporting this issue. SystemTap users should upgrade to these updated packages, which contain a backported patch to correct this issue.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated systemtap packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available from the CVE link in\nthe References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "SystemTap is an instrumentation system for systems running the Linux\nkernel, version 2.6. Developers can write scripts to collect data on the\noperation of the system. staprun, the SystemTap runtime tool, is used for\nmanaging SystemTap kernel modules (for example, loading them).\n\nIt was discovered that staprun did not properly sanitize the environment\nbefore executing the modprobe command to load an additional kernel module.\nA local, unprivileged user could use this flaw to escalate their\nprivileges. (CVE-2010-4170)\n\nNote: On Red Hat Enterprise Linux 4, an attacker must be a member of the\nstapusr group to exploit this issue. Also note that, after installing this\nupdate, users already in the stapdev group must be added to the stapusr\ngroup in order to be able to run the staprun tool.\n\nRed Hat would like to thank Tavis Ormandy for reporting this issue.\n\nSystemTap users should upgrade to these updated packages, which contain\na backported patch to correct this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2010:0895",
        "url": "https://access.redhat.com/errata/RHSA-2010:0895"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "653604",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=653604"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0895.json"
      }
    ],
    "title": "Red Hat Security Advisory: systemtap security update",
    "tracking": {
      "current_release_date": "2024-11-22T03:54:06+00:00",
      "generator": {
        "date": "2024-11-22T03:54:06+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2010:0895",
      "initial_release_date": "2010-11-17T14:51:00+00:00",
      "revision_history": [
        {
          "date": "2010-11-17T14:51:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2010-11-17T09:54:15+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T03:54:06+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 4",
                  "product_id": "4AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop version 4",
                  "product_id": "4Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 4",
                  "product_id": "4ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 4",
                  "product_id": "4WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
                "product": {
                  "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
                  "product_id": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-debuginfo@0.6.2-2.el4_8.3?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
                "product": {
                  "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
                  "product_id": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-testsuite@0.6.2-2.el4_8.3?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-0:0.6.2-2.el4_8.3.ia64",
                "product": {
                  "name": "systemtap-0:0.6.2-2.el4_8.3.ia64",
                  "product_id": "systemtap-0:0.6.2-2.el4_8.3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap@0.6.2-2.el4_8.3?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
                "product": {
                  "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
                  "product_id": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-runtime@0.6.2-2.el4_8.3?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
                "product": {
                  "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
                  "product_id": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-debuginfo@0.6.2-2.el4_8.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
                "product": {
                  "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
                  "product_id": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-testsuite@0.6.2-2.el4_8.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
                "product": {
                  "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
                  "product_id": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap@0.6.2-2.el4_8.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
                "product": {
                  "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
                  "product_id": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-runtime@0.6.2-2.el4_8.3?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
                "product": {
                  "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
                  "product_id": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-debuginfo@0.6.2-2.el4_8.3?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
                "product": {
                  "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
                  "product_id": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-testsuite@0.6.2-2.el4_8.3?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-0:0.6.2-2.el4_8.3.i386",
                "product": {
                  "name": "systemtap-0:0.6.2-2.el4_8.3.i386",
                  "product_id": "systemtap-0:0.6.2-2.el4_8.3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap@0.6.2-2.el4_8.3?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
                "product": {
                  "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
                  "product_id": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-runtime@0.6.2-2.el4_8.3?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "systemtap-0:0.6.2-2.el4_8.3.src",
                "product": {
                  "name": "systemtap-0:0.6.2-2.el4_8.3.src",
                  "product_id": "systemtap-0:0.6.2-2.el4_8.3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap@0.6.2-2.el4_8.3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
                "product": {
                  "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
                  "product_id": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-debuginfo@0.6.2-2.el4_8.3?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
                "product": {
                  "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
                  "product_id": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-testsuite@0.6.2-2.el4_8.3?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
                "product": {
                  "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
                  "product_id": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap@0.6.2-2.el4_8.3?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
                "product": {
                  "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
                  "product_id": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/systemtap-runtime@0.6.2-2.el4_8.3?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.src as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-0:0.6.2-2.el4_8.3.src"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.src",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.src as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-0:0.6.2-2.el4_8.3.src"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.src",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.src as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-0:0.6.2-2.el4_8.3.src"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.src",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.src as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-0:0.6.2-2.el4_8.3.src"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.src",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
        },
        "product_reference": "systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
        "relates_to_product_reference": "4WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Tavis Ormandy"
          ]
        }
      ],
      "cve": "CVE-2010-4170",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "discovery_date": "2010-11-15T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "653604"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment variable to specify a malicious configuration file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Systemtap: Insecure loading of modules",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "4AS:systemtap-0:0.6.2-2.el4_8.3.i386",
          "4AS:systemtap-0:0.6.2-2.el4_8.3.ia64",
          "4AS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
          "4AS:systemtap-0:0.6.2-2.el4_8.3.src",
          "4AS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
          "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
          "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
          "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
          "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
          "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
          "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
          "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
          "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
          "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
          "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
          "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
          "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
          "4Desktop:systemtap-0:0.6.2-2.el4_8.3.i386",
          "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ia64",
          "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ppc64",
          "4Desktop:systemtap-0:0.6.2-2.el4_8.3.src",
          "4Desktop:systemtap-0:0.6.2-2.el4_8.3.x86_64",
          "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
          "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
          "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
          "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
          "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
          "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
          "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
          "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
          "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
          "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
          "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
          "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
          "4ES:systemtap-0:0.6.2-2.el4_8.3.i386",
          "4ES:systemtap-0:0.6.2-2.el4_8.3.ia64",
          "4ES:systemtap-0:0.6.2-2.el4_8.3.ppc64",
          "4ES:systemtap-0:0.6.2-2.el4_8.3.src",
          "4ES:systemtap-0:0.6.2-2.el4_8.3.x86_64",
          "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
          "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
          "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
          "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
          "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
          "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
          "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
          "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
          "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
          "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
          "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
          "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
          "4WS:systemtap-0:0.6.2-2.el4_8.3.i386",
          "4WS:systemtap-0:0.6.2-2.el4_8.3.ia64",
          "4WS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
          "4WS:systemtap-0:0.6.2-2.el4_8.3.src",
          "4WS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
          "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
          "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
          "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
          "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
          "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
          "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
          "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
          "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
          "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
          "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
          "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
          "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2010-4170"
        },
        {
          "category": "external",
          "summary": "RHBZ#653604",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=653604"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4170",
          "url": "https://www.cve.org/CVERecord?id=CVE-2010-4170"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4170",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4170"
        }
      ],
      "release_date": "2010-11-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2010-11-17T14:51:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "4AS:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.src",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.src",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.src",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.src",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2010:0895"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "4AS:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.src",
            "4AS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4AS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.src",
            "4Desktop:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4Desktop:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.src",
            "4ES:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4ES:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.src",
            "4WS:systemtap-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-debuginfo-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-runtime-0:0.6.2-2.el4_8.3.x86_64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.i386",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ia64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.ppc64",
            "4WS:systemtap-testsuite-0:0.6.2-2.el4_8.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Systemtap: Insecure loading of modules"
    }
  ]
}

cve-2010-4170

Vulnerability from cvelistv5

Published

2010-12-07 21:00

Modified

2024-08-07 03:34

Severity ?

Summary

The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment variable to specify a malicious configuration file.

References

▼	URL	Tags
	https://exchange.xforce.ibmcloud.com/vulnerabilities/63344	vdb-entry, x_refsource_XF
	http://sources.redhat.com/ml/systemtap/2010-q4/msg00230.html	mailing-list, x_refsource_MLIST
	http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051127.html	vendor-advisory, x_refsource_FEDORA
	http://www.exploit-db.com/exploits/15620	exploit, x_refsource_EXPLOIT-DB
	http://secunia.com/advisories/42263	third-party-advisory, x_refsource_SECUNIA
	http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051115.html	vendor-advisory, x_refsource_FEDORA
	http://sources.redhat.com/git/gitweb.cgi?p=systemtap.git%3Ba=commit%3Bh=b7565b41228bea196cefa3a7d43ab67f8f9152e2	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2010-0894.html	vendor-advisory, x_refsource_REDHAT
	http://www.redhat.com/support/errata/RHSA-2010-0895.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/42306	third-party-advisory, x_refsource_SECUNIA
	http://www.securityfocus.com/bid/44914	vdb-entry, x_refsource_BID
	http://www.debian.org/security/2011/dsa-2348	vendor-advisory, x_refsource_DEBIAN
	http://www.securitytracker.com/id?1024754	vdb-entry, x_refsource_SECTRACK
	http://secunia.com/advisories/46920	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/42256	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/42318	third-party-advisory, x_refsource_SECUNIA
	http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051122.html	vendor-advisory, x_refsource_FEDORA
	http://packetstormsecurity.com/files/152569/SystemTap-1.3-MODPROBE_OPTIONS-Privilege-Escalation.html	x_refsource_MISC
	https://www.exploit-db.com/exploits/46730/	exploit, x_refsource_EXPLOIT-DB

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T03:34:37.683Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "systemtap-staprun-priv-escalation(63344)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63344"
          },
          {
            "name": "[systemtap] 20101117 important systemtap security fix",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://sources.redhat.com/ml/systemtap/2010-q4/msg00230.html"
          },
          {
            "name": "FEDORA-2010-17873",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051127.html"
          },
          {
            "name": "15620",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/15620"
          },
          {
            "name": "42263",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42263"
          },
          {
            "name": "FEDORA-2010-17865",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051115.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sources.redhat.com/git/gitweb.cgi?p=systemtap.git%3Ba=commit%3Bh=b7565b41228bea196cefa3a7d43ab67f8f9152e2"
          },
          {
            "name": "RHSA-2010:0894",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0894.html"
          },
          {
            "name": "RHSA-2010:0895",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0895.html"
          },
          {
            "name": "42306",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42306"
          },
          {
            "name": "44914",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/44914"
          },
          {
            "name": "DSA-2348",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2348"
          },
          {
            "name": "1024754",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024754"
          },
          {
            "name": "46920",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46920"
          },
          {
            "name": "42256",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42256"
          },
          {
            "name": "42318",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42318"
          },
          {
            "name": "FEDORA-2010-17868",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051122.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/152569/SystemTap-1.3-MODPROBE_OPTIONS-Privilege-Escalation.html"
          },
          {
            "name": "46730",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/46730/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-11-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment variable to specify a malicious configuration file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-19T15:06:14",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "systemtap-staprun-priv-escalation(63344)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63344"
        },
        {
          "name": "[systemtap] 20101117 important systemtap security fix",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://sources.redhat.com/ml/systemtap/2010-q4/msg00230.html"
        },
        {
          "name": "FEDORA-2010-17873",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051127.html"
        },
        {
          "name": "15620",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/15620"
        },
        {
          "name": "42263",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42263"
        },
        {
          "name": "FEDORA-2010-17865",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051115.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sources.redhat.com/git/gitweb.cgi?p=systemtap.git%3Ba=commit%3Bh=b7565b41228bea196cefa3a7d43ab67f8f9152e2"
        },
        {
          "name": "RHSA-2010:0894",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0894.html"
        },
        {
          "name": "RHSA-2010:0895",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0895.html"
        },
        {
          "name": "42306",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42306"
        },
        {
          "name": "44914",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/44914"
        },
        {
          "name": "DSA-2348",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2348"
        },
        {
          "name": "1024754",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024754"
        },
        {
          "name": "46920",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46920"
        },
        {
          "name": "42256",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42256"
        },
        {
          "name": "42318",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42318"
        },
        {
          "name": "FEDORA-2010-17868",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051122.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/152569/SystemTap-1.3-MODPROBE_OPTIONS-Privilege-Escalation.html"
        },
        {
          "name": "46730",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/46730/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2010-4170",
    "datePublished": "2010-12-07T21:00:00",
    "dateReserved": "2010-11-04T00:00:00",
    "dateUpdated": "2024-08-07T03:34:37.683Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted