Vulnerability: Privilege escalation in Linux Kernel

Posted: September 7, 2012 in Vulnerabilities
Tags: , , ,

Linux Kernel VulnerabilityPrivilege escalation in Linux Kernel

Affected products:

– Linux Kernel 3.2.x;
– Linux Kernel 3.4.x;
– Linux Kernel 3.5.x.

Affected versions:

– Linux Kernel 3.2.x;
– Linux Kernel 3.4.x;
– Linux Kernel 3.5.x.

Description:

Vulnerability allows local users to gain escalated privileges.

The vulnerability is due to the fact that a fully zero SCM_CREDENTIALS data is transmitted, where the sender does not send them. A local user can replace Netlink messages and perform certain actions with escalated privileges.

Manufacturer URL: http://www.kernel.org/

Solution: To resolve the vulnerability patch from GIT repository.

links:

http://git.kernel.org/

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s