Igor Zhbanov

**Name of the Vulnerable Software and Affected Versions** module-init-tools versions prior to 2.6.28.9 Linux kernel versions prior to 2.6.28.9 **Description** The issue affects the module-init-tools package in SUSE Linux Enterprise and openSUSE, as well as the Linux kernel. It allows local users to create device nodes, potentially leading to a breach of protected information integrity. The exploitation of these vulnerabilities can be carried out locally. **Recommendations** For module-init-tools versions prior to 2.6.28.9, update to version 2.6.28.9 or later to resolve the issue. For Linux kernel versions prior to 2.6.28.9, update to version 2.6.28.9 or later to resolve the issue. As a temporary workaround, consider restricting local user privileges to minimize the risk of exploitation.