4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
9.3%
The kill_something_info function in kernel/signal.c in the Linux kernel
before 2.6.28 does not consider PID namespaces when processing signals
directed to PID -1, which allows local users to bypass the intended
namespace isolation, and send arbitrary signals to all processes in all
namespaces, via a kill command.
Author | Note |
---|---|
smb | Dapper has no pid_namespace. |