PT-2009-1109 · Linux+1 · Linux Kernel+1

Chris Evans

Published

2009-02-27

Updated

2018-10-11

CVE-2009-0028

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.6.28 and earlier

Description The issue is related to insufficient access control in the clone system call of the Linux kernel, allowing a local attacker to send signals to privileged parent processes from unprivileged child processes. This can be achieved by launching a new child process with the CLONE PARENT flag set and then letting this new process exit.

Recommendations For Linux kernel versions 2.6.28 and earlier, consider restricting the use of the clone system call with the CLONE PARENT flag until a patch is available. As a temporary workaround, limit the ability of unprivileged child processes to send signals to privileged parent processes.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2016-02228

CVE-2009-0028

DSA-1787-1

DSA-1794-1

DSA-1800-1

RHSA-2009:0326

RHSA-2009:0451

RHSA-2009:0459

RHSA-2009_0326

RHSA-2009_0459

Affected Products

Linux Kernel

Red Hat

PT-2009-1109 · Linux+1 · Linux Kernel+1

CVE-2009-0028

Weakness Enumeration

Related Identifiers

Affected Products

References · 356