Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24783

HistoryApr 10, 2020 - 1:04 a.m.

Privilege Escalation

2020-04-1001:04:57

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

6

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

kernel is vulnerable to privilege escalation. A local user is able to obtain root privileges and modify kernel memory locations to write to the /sys/kernel/debug/acpi/custom_method file.

CPENameOperatorVersion
kernel-rteq2.6.33.9__rt31.74.el6rt
kernel-rteq2.6.33.9__rt31.66.el6rt
kernel-rteq2.6.33.9__rt31.74.el6rt
kernel-rteq2.6.33.9__rt31.66.el6rt

References

ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=526b4af47f44148c9d665e57723ed9f86634c6e3

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=526b4af47f44148c9d665e57723ed9f86634c6e3

www.openwall.com/lists/oss-security/2011/02/25/5

access.redhat.com/errata/RHSA-2011:1253

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=680841

docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html

github.com/torvalds/linux/commit/526b4af47f44148c9d665e57723ed9f86634c6e3

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

Related for VERACODE:24783

cve1 prion1 cvelist1 ubuntucve1 nessus1 redhat1