SystemTap: Moderate Security Update

Users of SystemTap please be advised of a moderate security update that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (

RHSA-2010:0895-01: [RHSA-2010:0895-01] Moderate: systemtap security update
Product: Red Hat Enterprise Linux

SystemTap is an instrumentation system for systems running the Linux

kernel, version 2.6. Developers can write scripts to collect data on the

operation of the system. staprun, the SystemTap runtime tool, is used for

managing SystemTap kernel modules (for example, loading them).

It was discovered that staprun did not properly sanitize the environment

before executing the modprobe command to load an additional kernel module.

A local, unprivileged user could use this flaw to escalate their

privileges. (CVE-2010-4170)