CVE-2012-1568

Published: Mar 1, 2013Modified: Apr 29, 2026

1.9

Vector

AV:L/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 3.4 / Impact: 2.9

Source: NVD

Description

The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.

Affected (4)

Products: Fedoraproject: Fedora · Redhat: Enterprise Linux

1 product

1 product

Enterprise Linux

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 15
Fedoraproject Fedora	Version 16
Redhat Enterprise Linux	Version 5
Redhat Enterprise Linux	Version 6.0

References (10)

http://openwall.com/lists/oss-security/2012/03/21/3

Source: secalert@redhat.com

http://scarybeastsecurity.blogspot.com/2012/03/some-random-observations-on-linux-aslr.html

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/03/20/4

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=804947

Source: secalert@redhat.com

https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=302a4fc15aebf202b6dffd6c804377c6058ee6e4

Source: secalert@redhat.com

http://openwall.com/lists/oss-security/2012/03/21/3

Source: af854a3a-2127-422b-91ae-364da2661108

http://scarybeastsecurity.blogspot.com/2012/03/some-random-observations-on-linux-aslr.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2012/03/20/4

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=804947

Source: af854a3a-2127-422b-91ae-364da2661108

https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=302a4fc15aebf202b6dffd6c804377c6058ee6e4

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.