CVE-2011-2502

Description

runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate modules when a module path is specified by a user for user-space probing, which allows local users in the stapusr group to gain privileges via a crafted module in the search path in the -u argument.

How to fix CVE-2011-2502

To remediate CVE-2011-2502, upgrade the affected package to a fixed version below.

• Debian/systemtap—upgrade to 1.6-1 or later

Is CVE-2011-2502 being exploited?

Low — EPSS is 0.5%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 1.6-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-2502