CVE-2012-1568Fedora vulnerability

5 documents4 sources
Severity
1.9LOWNVD
EPSS
0.0%
top 86.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Fedoraproject FedoraRedhat Enterprise Linux
Timeline
PublishedMar 1
Latest updateMay 14

Description

The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.

CVSS vector

AV:L/AC:M/C:N/I:P/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages0 packages

Also affects: Enterprise Linux 5, 6.0, Fedora 15, 16

🔴Vulnerability Details

1
GHSA
GHSA-vp43-m2w7-p2vc: The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not proper2022-05-14

📋Vendor Advisories

1
Red Hat
kernel: execshield: predictable ascii armour base address2012-03-17

💬Community

2
Bugzilla
CVE-2012-1568 kernel: execshield: predictable ascii armour base address2012-03-20
Bugzilla
CVE-2012-1568 kernel: execshield: predictable ascii armour base address [fedora-all]2012-03-20