CVE-2009-4271

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6.9 through 2.6.17

Description The issue allows local users to cause a denial of service, resulting in a system panic. This can be achieved by a 32-bit application calling mprotect on its Virtual Dynamic Shared Object (VDSO) page and then triggering a segmentation fault.

Recommendations For Linux kernel versions 2.6.9 through 2.6.17, consider restricting access to the mprotect system call for 32-bit applications to minimize the risk of exploitation. As a temporary workaround, avoid using 32-bit applications that may trigger a segmentation fault after calling mprotect on the VDSO page until a patch is available.