New Search

The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability which allows local users to gain privileges or cause a denial of service by modifying the properties of a mountpoint.

oval:org.mitre.oval:def:10437

The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability which allows local users to gain privileges or cause a denial of service by modifying the properties of a mountpoint.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 5
  • Oracle Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2008-2931
Product(s):