PT-2006-1130 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel version 2.6.16 Description: A race condition exists in the do add counters function in netfilter for the Linux kernel, allowing local users with CAP NET ADMIN capabilities to read kernel memory. This is achieved by triggering the...

security flaw

Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAPNETADMIN capability, which could allow local users to conduct unauthorized activities via 1 ipv4/ipsockglue.c and 2 ipv6/ipv6sockglue.c...