CVE-2008-0001

VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.

Date published : 2008-01-15

http://www.securityfocus.com/bid/27280

http://www.securityfocus.com/archive/1/486485/100/0/threaded