Vigil@nce - Linux kernel: information disclosure via perf_event_open
May 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use perf_event_open() on the Linux kernel, in
order to obtain sensitive information related to the execution of
a suid process.
– Impacted products: Linux.
– Severity: 1/4.
– Creation date: 04/05/2016.
DESCRIPTION OF THE VULNERABILITY
The perf_event_open() system call is used to monitor the
performance of a process.
However, during the call to execve(), permission checks may occur
too soon.
An attacker can therefore use perf_event_open() on the Linux
kernel, in order to obtain sensitive information related to the
execution of a suid process.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Linux-kernel-information-disclosure-via-perf-event-open-19522