CVE-2006-6304

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.19

Description The issue arises from the do coredump function in fs/exec.c, which sets the flag variable to O EXCL but does not utilize it. This oversight enables context-dependent attackers to modify arbitrary files through a rewrite attack during the core dump process.

Recommendations For Linux kernel version 2.6.19, consider applying a patch that properly utilizes the flag variable set by the do coredump function to prevent arbitrary file modifications. At the moment, there is no information about a newer version that contains a fix for this vulnerability.