GLSA-201406-04 : SystemTap: Denial of Service
Medium Nessus Plugin ID 74319
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201406-04 (SystemTap: Denial of Service)
SystemTap does not properly handle DWARF expressions when unwinding the stack.
A local attacker with SystemTap permissions could trigger a kernel panic, causing a Denial of Service condition.
Disabling unprivileged mode is a temporary workaround for this vulnerability.
SolutionAll SystemTap users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=dev-util/systemtap-2.0'