Stack Clash Vulnerability Exploits Linux Stack Guard


#1

There is a new vulnerability in Linux systems. There has been no news of nay major production level attack using this vulnerability. However, security experts are recommending everyone to patch their production systems.

##What is Stack Clash Vulnerability

It is a vulnerablity in Linux using which the attackers could exploit to corrupt system memory which is related to a memory region call stack.
###What is Stack Guard

StackGuard is a compiler extension that enhances the executable code produced by the compiler so that it detects and thwarts buffer-overflow attacks against the stack. The effect is transparent to the normal function of programs.

Here is the list of articles which explains this vulnerability.

http://www.securityweek.com/stack-clash-flaws-allow-privilege-escalation-unix-systems

http://www.esecurityplanet.com/threats/stack-clash-vulnerability-exploits-linux-stack-guard.html

https://access.redhat.com/security/vulnerabilities/stackguard

If you know more information regarding this vulnerability, please share it here.