CVE-2007-4308

The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges.

Date published : 2007-08-13

http://www.securityfocus.com/bid/25216

http://www.securityfocus.com/archive/1/488457/100/0/threaded