漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ASLR bypass for setuid executables via procctl(2)
Vulnerability Description
The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather than before. As a result, a user-requested ASLR disable was still in effect at the point where the base address was chosen. An unprivileged local user can disable ASLR for a setuid PIE binary by calling procctl(2) before execve(2). This makes exploitation of any separate memory corruption vulnerability in that binary significantly easier.
CVSS Information
N/A
Vulnerability Type
不正确的行为次序:过早验证
Vulnerability Title
FreeBSD 处理逻辑错误漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会开源的一套类Unix操作系统。 FreeBSD存在处理逻辑错误漏洞,该漏洞源于ELF映像激活程序在计算PIE基地址后清除每个进程ASLR偏好标志,导致用户请求的ASLR禁用生效,可能使未授权本地用户在调用execve(2)前使用procctl(2)禁用setuid PIE二进制文件的ASLR,从而更容易利用该二进制文件中的内存损坏漏洞。
CVSS Information
N/A
Vulnerability Type
N/A