CVE-2010-4171
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2010-4171
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2010-4171.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2010-4171
- Related
- Published
- 2010-12-07T22:00:02Z
- Modified
- 2025-04-11T00:51:21Z
- Downstream
- Summary
- [none]
- Details
-
The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary kernel modules).
- References
-
- http://secunia.com/advisories/42256
- http://secunia.com/advisories/42263
- http://secunia.com/advisories/42318
- http://secunia.com/advisories/46920
- http://www.debian.org/security/2011/dsa-2348
- https://bugzilla.redhat.com/show_bug.cgi?id=653606
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051115.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051122.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051127.html
- http://sources.redhat.com/git/gitweb.cgi?p=systemtap.git%3Ba=commit%3Bh=b7565b41228bea196cefa3a7d43ab67f8f9152e2
- http://sources.redhat.com/ml/systemtap/2010-q4/msg00230.html
- http://www.redhat.com/support/errata/RHSA-2010-0894.html
- http://www.securityfocus.com/bid/44917
- http://www.securitytracker.com/id?1024754
- https://exchange.xforce.ibmcloud.com/vulnerabilities/63345
- https://security-tracker.debian.org/tracker/CVE-2010-4171
Affected packages
Debian:11 / systemtap
Package
- Name
- systemtap
- Purl
- pkg:deb/debian/systemtap?arch=source
Debian:12 / systemtap
Package
- Name
- systemtap
- Purl
- pkg:deb/debian/systemtap?arch=source
Debian:13 / systemtap
Package
- Name
- systemtap
- Purl
- pkg:deb/debian/systemtap?arch=source