Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2013-2929

Description

The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h.

POC

Reference

- http://www.ubuntu.com/usn/USN-2070-1

- http://www.ubuntu.com/usn/USN-2129-1

Github

No PoCs found on GitHub currently.