CVE-2007-3732

Name of the Vulnerable Software and Affected Versions Linux versions prior to 2.6.23

Description The issue arises from the TRACE IRQS ON function in iret exc, which calls a C function without properly setting the segments. Specifically, the kernel's %fs needs to be restored before the call in TRACE IRQS ON and before enabling interrupts, to ensure that "current" references work correctly. Without this restoration, using "current" between iret exc and the middle of error code, where %fs is reset, would result in a crash.

Recommendations For Linux versions prior to 2.6.23, update to version 2.6.23 or later to resolve the issue.