New Search

VFS in the Linux kernel before 2.6.22.16 and 2.6.23.x before 2.6.23.14 performs tests of access mode by using the flag variable instead of the acc_mode variable which might allow local users to bypass intended permissions and remove directories.

oval:org.mitre.oval:def:9709

VFS in the Linux kernel before 2.6.22.16 and 2.6.23.x before 2.6.23.14 performs tests of access mode by using the flag variable instead of the acc_mode variable which might allow local users to bypass intended permissions and remove directories.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 4
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 4
  • CentOS Linux 5
  • Oracle Linux 4
  • Oracle Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2008-0001
Product(s):