Vulnerabilities

CVE-2008-2931

by Fred · 09/07/2008

The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability, which allows local users to gain privileges or cause a denial of service by modifying the properties of a mountpoint.

Date published : 2008-07-09

http://www.securityfocus.com/bid/30126

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=ee6f958291e2a768fd727e7a67badfff0b67711a

Similar

Tags: Cybersecurity Alert