CVE-2013-1958

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.8.6

Description The issue allows local users to bypass intended access restrictions by leveraging a time interval during which a user namespace has been created but a PID namespace has not been created. This is due to the scm check creds function in net/core/scm.c not properly enforcing capability requirements for controlling the PID value associated with a UNIX domain socket.

Recommendations For Linux kernel versions prior to 3.8.6, update to version 3.8.6 or later to resolve the issue.