3 matches found
CVE-2009-0798
CVE-2009-0798 – acpid DoS The ACPI Event Daemon (acpid) is affected on versions prior to 1.0.10. An unauthenticated remote attacker can exhaust CPU and disrupt connectivity by opening a large number of UNIX sockets without closing them, triggering an infinite loop. This is described across multip...
CVE-2009-4235
CVE-2009-4235 affects acpid 1.0.4, where an unrestrictive umask may grant local users weak permissions on /var/log/acpid. This could allow reading sensitive information or overwriting the log file to cause a denial of service. The provided connected documents confirm the existence of this vulnera...
CVE-2009-4033
CVE-2009-4033 describes a vulnerability in acpid where a patch for acpid 1.0.4 could trigger an open() with insufficient arguments, allowing local users to interact with the acpid log file at /var/log/acpid. Reports across multiple vendors (Red Hat, Oracle Linux, CentOS, Scientific Linux, Miracle...