Lucene search
RootSSV:12370HistorySep 22, 2009 - 12:00 a.m.
Linux Kernel z90crypt驱动本地权限提升漏洞
2009-09-2200:00:00
Root
www.seebug.org
12
0.0004 Low
EPSS
Percentile
5.7%
CVE ID: CVE-2009-1883
Linux Kernel是开放源码操作系统Linux所使用的内核。
Linux Kernel的z90crypt驱动中的z90crypt_unlocked_ioctl函数没有对Z90QUIESCE操作执行权限检查,这可能允许拥有有效用户ID(euid)为0的本地用户绕过预期的功能限制,执行非授权操作。
Linux kernel 2.6.9
厂商补丁:
RedHat
RedHat已经为此发布了一个安全公告(RHSA-2009:1438-01)以及相应补丁:
RHSA-2009:1438-01:Important: kernel security and bug fix update
链接:https://www.redhat.com/support/errata/RHSA-2009-1438.html
Related
cve
cve
CVE-2009-1883
2009-09-18 10:30:00
prion
prion
Design/Logic Flaw
2009-09-18 10:30:00
ubuntucve
ubuntucve
CVE-2009-1883
2009-09-18 00:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1438 (kernel)
2009-09-21 00:00:00
CentOS Security Advisory CESA-2009:1438 (kernel)
2009-09-21 00:00:00
CentOS Update for kernel CESA-2009:1438 centos4 i386
2011-08-09 00:00:00
nessus
nessus
Oracle Linux 4 : kernel (ELSA-2009-1438)
2013-07-12 00:00:00
RHEL 4 : kernel (RHSA-2009:1438)
2009-09-16 00:00:00
CentOS 4 : kernel (CESA-2009:1438)
2010-01-06 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2009-09-15 00:00:00
redhat
redhat
(RHSA-2009:1438) Important: kernel security and bug fix update
2009-09-15 00:00:00
centos
centos
kernel security update
2009-09-16 03:38:30
suse
suse
remote denial of service in kernel
2010-02-18 21:41:21
debian
debian
osv
osv
linux-2.6 - several vulnerabilities
2009-11-05 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2009-11-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-10-22 00:00:00