Lucene search

K
cvelistMitreCVELIST:CVE-2008-4554
HistoryOct 15, 2008 - 7:00 p.m.

CVE-2008-4554

2008-10-1519:00:00
mitre
www.cve.org
7
linux kernel
file descriptors
security vulnerability

AI Score

4.4

Confidence

High

EPSS

0

Percentile

10.1%

The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.

References

AI Score

4.4

Confidence

High

EPSS

0

Percentile

10.1%