** Description changed: - Linux kernel sa_restorer information leak + The flush_signal_handlers function in kernel/signal.c in the Linux + kernel before 3.8.4 preserves the value of the sa_restorer field across + an exec operation, which makes it easier for local users to bypass the + ASLR protection mechanism via a crafted application containing a + sigaction system call. Break-Fix: - 2ca39528c01a933f6689cd6505ce65bd6d68a530
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1153813 Title: CVE-2013-0914 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1153813/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
