Definition

Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability

oval:org.mitre.oval:def:7608

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.

Family:

unix

Status:

ACCEPTED

Platform(s):

VMWare ESX Server 4.0

Class:

vulnerability

Reference(s):

CVE-2009-3547

Product(s):