The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service (crash) or possibly gain privileges via a crafted system call.
References
Configurations
History
13 Feb 2023, 02:19
Type | Values Removed | Values Added |
---|---|---|
Summary | The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service (crash) or possibly gain privileges via a crafted system call. | |
References |
|
02 Feb 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | CVE-2009-0029 Linux Kernel insecure 64 bit system call argument passing |
Information
Published : 2009-01-15 17:30
Updated : 2023-12-10 10:51
NVD link : CVE-2009-0029
Mitre link : CVE-2009-0029
CVE.ORG link : CVE-2009-0029
JSON object : View
Products Affected
linux
- linux_kernel
debian
- debian_linux
CWE
CWE-20
Improper Input Validation