Niels Provos Systrace before 1.6f on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 64-bit syscall with a syscall number that corresponds to a policy-compliant 32-bit syscall.
2009-01-29T19:30:00.280
2025-04-09T00:30:58.490
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | provos | systrace | ≤ 1.6e | Yes |
| Application | provos | systrace | 1.1 | Yes |
| Application | provos | systrace | 1.2 | Yes |
| Application | provos | systrace | 1.3 | Yes |
| Application | provos | systrace | 1.4 | Yes |
| Application | provos | systrace | 1.5 | Yes |
| Application | provos | systrace | 1.6 | Yes |
| Application | provos | systrace | 1.6a | Yes |
| Application | provos | systrace | 1.6b | Yes |
| Application | provos | systrace | 1.6c | Yes |
| Application | provos | systrace | 1.6d | Yes |
| Operating System | linux | linux_kernel | _nil_ | No |