CVE-2009-0859

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.28.5

Description The issue is related to the shm get stat function in the shm subsystem of the Linux kernel. When CONFIG SHMEM is disabled, this function misinterprets the data type of an inode. This can be exploited by local users to cause a denial of service, resulting in a system hang, by making an SHM INFO shmctl call. An example of how this can be done is by running the ipcs program.

Recommendations For Linux kernel versions prior to 2.6.28.5, update to version 2.6.28.5 or later to resolve the issue.