Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 2.1 |
||
debian debian linux 2.2 |
||
slackware slackware linux |
||
trustix secure linux 1.1 |
||
mandrakesoft mandrake linux 6.0 |
||
mandrakesoft mandrake linux 6.1 |
||
redhat linux 5.2 |
||
redhat linux 6.2 |
||
mandrakesoft mandrake linux 7.0 |
||
mandrakesoft mandrake linux 7.1 |