CVE-2012-0875
EPSS 0.35%
Description
SystemTap 1.7, 1.6.7, and probably other versions, when unprivileged mode is enabled, allows local users to obtain sensitive information from kernel memory or cause a denial of service (kernel panic and crash) via vectors related to crafted DWARF data, which triggers a read of an invalid pointer.
How to fix CVE-2012-0875
To remediate CVE-2012-0875, upgrade the affected package to a fixed version below.
- Debian/systemtap—upgrade to 1.7-1 or later
Is CVE-2012-0875 being exploited?
Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.7-1