CVE-2010-4171
EPSS 0.06%
Description
The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary kernel modules).
How to fix CVE-2010-4171
To remediate CVE-2010-4171, upgrade the affected package to a fixed version below.
- Debian/systemtap—upgrade to 1.2-3 or later
Is CVE-2010-4171 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.2-3