CVE-2009-2695

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.31-rc7

Description The issue allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities. This is related to the default configuration of the allow unconfined mmap low boolean in SELinux, an error that causes allow unconfined mmap low to be ignored, lack of a requirement for the CAP SYS RAWIO capability for certain mmap operations, and interaction between the mmap min addr protection mechanism and certain application programs.

Recommendations For Linux kernel versions prior to 2.6.31-rc7, update to version 2.6.31-rc7 or later to resolve the issue. As a temporary workaround, consider restricting the use of mmap operations that target low memory addresses to minimize the risk of exploitation. Additionally, review and adjust the configuration of the allow unconfined mmap low boolean in SELinux to ensure it is properly set.