IBM Support

IV58766: AIX PTRACE VULNERABILITY CVE-2014-0930 APPLIES TO AIX 6100-09

A fix is available

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

Local fix

Problem summary

  • An unprivileged user can crash the system by making a system
    call with bad parameters.
    

Problem conclusion

  • Add an additional check for an incorrect system call parameter.
    

Temporary fix

Comments

  • 6100-07 - use AIX APAR IV59045
    6100-08 - use AIX APAR IV58948
    6100-09 - use AIX APAR IV58766
    6100-09 - use AIX APAR IV58766
    6100-09 - use AIX APAR IV58766
    7100-01 - use AIX APAR IV58888
    7100-02 - use AIX APAR IV58861
    7100-03 - use AIX APAR IV58840
    7100-04 - use AIX APAR IV59858
    

APAR Information

  • APAR number

    IV58766

  • Reported component name

    AIX 610 STD EDI

  • Reported component ID

    5765G6200

  • Reported release

    610

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Submitted date

    2014-04-04

  • Closed date

    2014-04-04

  • Last modified date

    2016-05-10

Fix information

  • Fixed component name

    AIX 610 STD EDI

  • Fixed component ID

    5765G6200

Applicable component levels

  • R610 PSY U859304

       UP14/05/21 I 1000

PTF to Fileset Mapping



Document information

More support for: AIX Standard Edition

Software version: 610

Operating system(s): AIX

Reference #: IV58766

Modified date: 10 May 2016