Secunia
Login
|
|
CVE Reference: CVE-2009-1527 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-1527 |
|
|
Description: Race condition in the ptrace_attach function in kernel/ptrace.c in the Linux kernel before 2.6.30-rc4 allows local users to gain privileges via a PTRACE_ATTACH ptrace call during an exec system call that is launching a setuid application, related to locking an incorrect cred_exec_mutex object. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/50293 SAID Secunia Advisory: SA34977 Secunia Advisory: SA35120 OSVDB 54188 MLIST http://www.openwall.com/lists/oss-security/2009/05/04/2 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2009-0084 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=cad81bc2529ab8c62b6fdc83a1c0c7f4a87209eb BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/503610/100/0/threaded BID 34799 |
|
| Return to the previous page. |
