彙總 systemtap 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
歷史漏洞主要涉及 輸入驗證問題、緩衝區溢位與拒絕服務 等問題,部分漏洞可能導致 異常行為,並影響 生產負載與軟體部署 相關場景。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2012-0875 | SystemTap 1.7, 1.6.7, and probably other versions, when unprivileged mode is enabled, allows local users to obtain sensitive information from kernel memory or cause a denial of service (kernel panic and crash) via vectors related to crafted DWARF data, which triggers a read of an invalid pointer. | [email protected] | 5.4 | 0.06% | 2014-02-04 | 2026-04-29 |
| CVE-2011-2503 | The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module initialization. | [email protected] | 3.7 | 0.07% | 2012-07-26 | 2026-04-29 |
| CVE-2011-2502 | runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate modules when a module path is specified by a user for user-space probing, which allows local users in the stapusr group to gain privileges via a crafted module in the search path in the -u argument. | [email protected] | 4.4 | 0.08% | 2012-07-26 | 2026-04-29 |
| CVE-2011-1781 | SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing). | [email protected] | 1.2 | 0.06% | 2011-08-29 | 2026-04-29 |
| CVE-2011-1769 | SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access. | [email protected] | 1.2 | 0.07% | 2011-08-29 | 2026-04-29 |
| CVE-2010-4171 | The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary kernel modules). | [email protected] | 2.1 | 0.06% | 2010-12-07 | 2026-04-29 |
| CVE-2010-4170 | The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment variable to specify a malicious configuration file. | [email protected] | 7.2 | 24.08% | 2010-12-07 | 2026-04-29 |
| CVE-2010-0412 | stap-server in SystemTap 1.1 does not properly restrict the value of the -B (aka BUILD) option, which allows attackers to have an unspecified impact via vectors associated with executing the make program, a different vulnerability than CVE-2009-4273. | [email protected] | 7.5 | 0.49% | 2010-02-25 | 2026-04-29 |
| CVE-2010-0411 | Multiple integer signedness errors in the (1) __get_argv and (2) __get_compat_argv functions in tapset/aux_syscalls.stp in SystemTap 1.1 allow local users to cause a denial of service (script crash, or system crash or hang) via a process with a large number of arguments, leading to a buffer overflow. | [email protected] | 4.9 | 0.21% | 2010-02-08 | 2026-04-29 |
| CVE-2009-4273 | stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments in a request. | [email protected] | 10.0 | 22.40% | 2010-01-26 | 2026-04-29 |
| CVE-2009-2911 | SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operation with a large number of arguments that trigger a kernel stack overflow, (2) cause a denial of service via crafted DWARF expressions that trigger a kernel stack frame overflow, or (3) cause a denial of service (infinite loop) via vectors that trigger creation of large unwind tables, related to Common | [email protected] | 1.9 | 0.08% | 2009-10-22 | 2026-04-23 |
| CVE-2009-0784 | Race condition in the SystemTap stap tool 0.0.20080705 and 0.0.20090314 allows local users in the stapusr group to insert arbitrary SystemTap kernel modules and gain privileges via unknown vectors. | [email protected] | 6.3 | 0.04% | 2009-03-25 | 2026-04-23 |