CVE-2009-3725

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.31.5

Description The issue allows local users to bypass intended access restrictions and gain privileges via calls to functions in certain subsystems, including uvesafb, pohmelfs, dst, and dm. This is due to the connector layer not requiring the CAP SYS ADMIN capability for interaction with these subsystems.

Recommendations For Linux kernel versions prior to 2.6.31.5, update to version 2.6.31.5 or later to resolve the issue.