Nsa · Selinux · CVE-2004-1069
Name of the Vulnerable Software and Affected Versions:
SELinux versions 2.6.x through 2.6.9
Description:
A race condition exists in the handling of SOCK SEQPACKET unix domain sockets, specifically in the `sock dgram sendmsg` function, allowing local users to cause a denial of service by crashing the kernel.
Recommendations:
For SELinux versions 2.6.x through 2.6.9, consider restricting access to unix domain sockets to minimize the risk of exploitation until a patch is available.