Grsecurity Kernel Patch vulnerabilities
4 known vulnerabilities affecting grsecurity/grsecurity_kernel_patch.
Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-0257P4HIGHCVSS 7.8PoCv1.9.4v2.0.1+10 more2007-01-16
CVE-2007-0257 [HIGH] CVE-2007-0257: Unspecified vulnerability in the expand_stack function in grsecurity PaX allows local users to gain
Unspecified vulnerability in the expand_stack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has been, easily checked for any supposed vulnerabilities." The devel
nvd
CVE-2002-1826P4MEDIUMCVSS 4.6PoCv1.9.42002-12-31
CVE-2002-1826 [MEDIUM] CVE-2002-1826: grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.
nvd
CVE-2006-0228P4HIGHCVSS 7.2v2.0.1v2.0.2+8 more2006-01-17
CVE-2006-0228 [HIGH] CVE-2006-0228: The RBAC functionality in grsecurity before 2.1.8 does not properly handle when the admin role creat
The RBAC functionality in grsecurity before 2.1.8 does not properly handle when the admin role creates a service and then exits the shell without unauthenticating, which causes the service to be restarted with the admin role still active.
nvd
CVE-2008-1940P4MEDIUMCVSS 4.6v2.4.33v2.4.33.2+5 more2008-04-25
CVE-2008-1940 [MEDIUM] CWE-264 CVE-2008-1940: The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce use
The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce user_transition_deny and user_transition_allow rules for the (1) sys_setfsuid and (2) sys_setfsgid calls, which allows local users to bypass restrictions for those calls.
nvd