PT-2009-1109 · Linux+1 · Linux Kernel+1

Chris Evans

Publicado

2009-02-27

Atualizado

2018-10-11

CVE-2009-0028

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6.28 and earlier

Description The issue is related to insufficient access control in the clone system call of the Linux kernel, allowing a local attacker to send signals to privileged parent processes from unprivileged child processes. This can be achieved by launching a new child process with the CLONE PARENT flag set and then letting this new process exit.

Recommendations For Linux kernel versions 2.6.28 and earlier, consider restricting the use of the clone system call with the CLONE PARENT flag until a patch is available. As a temporary workaround, limit the ability of unprivileged child processes to send signals to privileged parent processes.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

BDU:2016-02228

CVE-2009-0028

DSA-1787-1

DSA-1794-1

DSA-1800-1

RHSA-2009:0326

RHSA-2009:0451

RHSA-2009:0459

RHSA-2009_0326

RHSA-2009_0459

Produtos afetados

Linux Kernel

Red Hat

PT-2009-1109 · Linux+1 · Linux Kernel+1

CVE-2009-0028

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 356