CVE-2011-2503

Description

The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module initialization.

How to fix CVE-2011-2503

To remediate CVE-2011-2503, upgrade the affected package to a fixed version below.

• Debian/systemtap—upgrade to 1.6-1 or later

Is CVE-2011-2503 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 1.6-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-2503