Linux Kernel Core Dump Handling May Let Local Users Deny Service or Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1016451
|
|
SecurityTracker URL: http://securitytracker.com/id?1016451
|
|
CVE Reference: CVE-2006-2451
(Links to External Site)
|
Date: Jul 7 2006
|
Impact: Denial of service via local system, Modification of system information, Root access via local system
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 2.6.x
|
Description: A vulnerability was reported in Linux Kernel. A local user can obtain elevated privileges on the target system. A local user can cause denial of service conditions.
A local user can cause the kernel to dump a core file into a directory that does not have permissions to write to. As a result,
the local user can consume excessive disk space or potentially gain root privileges on the target system.
Red Hat discovered
this vulnerability.
|
Impact: A local user can obtain elevated privileges on the target system.
A local user can cause denial of service conditions on the target system.
|
Solution: A patch for kernel version 2.6.17 is available at:
http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=0af184bb9f80edfbb94de46cb52e9592e5a547b0
|
Vendor URL: www.kernel.org/ (Links to External Site)
|
Cause: Access control error
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Fri, 7 Jul 2006 15:10:12 -0400
Subject: Linux kernel vulnerability
|
Red Hat reported:
During security research, Red Hat discovered a behavioral flaw in core dump
handling. A local user could create a program that would cause a core file
to be dumped into a directory they would not normally have permissions to
write to. This could lead to a denial of service (disk consumption), or
allow the local user to gain root privileges. (CVE-2006-2451)
|
|
