Published: 22/04/2009 Updated: 07/11/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 410

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The kill_something_info function in kernel/signal.c in the Linux kernel prior to 2.6.28 does not consider PID namespaces when processing signals directed to PID -1, which allows local users to bypass the intended namespace isolation, and send arbitrary signals to all processes in all namespaces, via a kill command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.27.12
linux linux kernel 2.6.25.4
linux linux kernel 2.6.25.11
linux linux kernel 2.6.18
linux linux kernel 2.6.25.9
linux linux kernel 2.6.22.15
linux linux kernel 2.6.27.3
linux linux kernel 2.6.27.1
linux linux kernel 2.6.24.7
linux linux kernel 2.6.27.18
linux linux kernel 2.6.23.13
linux linux kernel 2.6.24.2
linux linux kernel 2.4.36.6
linux linux kernel 2.6.26.5
linux linux kernel 2.6.22.21
linux linux kernel 2.6.25.12
linux linux kernel 2.6.25.5
linux linux kernel 2.6.23.8
linux linux kernel 2.6.25
linux linux kernel 2.6.22.12
linux linux kernel 2.6.25.8
linux linux kernel 2.6.27.10
linux linux kernel 2.6.21.6
linux linux kernel 2.4.36.2
linux linux kernel 2.6.22.1
linux linux kernel 2.6.27.17
linux linux kernel 2.6.23.16
linux linux kernel 2.6.24.1
linux linux kernel 2.6.25.6
linux linux kernel 2.6.22
linux linux kernel 2.6.27.16
linux linux kernel 2.6.26
linux linux kernel 2.6.27.20
linux linux kernel 2.6.26.3
linux linux kernel 2.6.20.16
linux linux kernel 2.6.27.4
linux linux kernel 2.6.27
linux linux kernel 2.6.19.4
linux linux kernel 2.6.25.13
linux linux kernel 2.6.20.21
linux linux kernel 2.6.27.13
linux linux kernel 2.6.25.7
linux linux kernel 2.4.36.1
linux linux kernel 2.6.25.3
linux linux kernel 2.6.24
linux linux kernel 2.6.26.2
linux linux kernel 2.6.20.17
linux linux kernel 2.6.27.15
linux linux kernel 2.6.21.5
linux linux kernel 2.6.25.15
linux linux kernel 2.6.24_rc4
linux linux kernel 2.6.23.15
linux linux kernel 2.6.23.10
linux linux kernel 2.6.27.8
linux linux kernel 2.4.36.4
linux linux kernel 2.6.26.1
linux linux kernel 2.6.20.20
linux linux kernel 2.6.27.9
linux linux kernel 2.6.22.18
linux linux kernel 2.4.36.3
linux linux kernel 2.6.22.20
linux linux kernel 2.6.20.18
linux linux kernel 2.6.23.9
linux linux kernel 2.6.25.2
linux linux kernel 2.6.25.1
linux linux kernel 2.6.24.4
linux linux kernel 2.6.27.19
linux linux kernel 2.6.25.16
linux linux kernel 2.6.22.9
linux linux kernel 2.6.25.17
linux linux kernel 2.6.22.13
linux linux kernel 2.6.19.7
linux linux kernel 2.6.24.5
linux linux kernel 2.6.24_rc1
linux linux kernel 2.6.20.19
linux linux kernel 2.6.22.17
linux linux kernel 2.6.25.10
linux linux kernel 2.6.22.11
linux linux kernel 2.6.23
linux linux kernel 2.6.22.10
linux linux kernel 2.6.23.17
linux linux kernel 2.6.27.5
linux linux kernel 2.6.21.7
linux linux kernel 2.6.27.7
linux linux kernel 2.6.23_rc1
linux linux kernel 2.6.22.22
linux linux kernel
linux linux kernel 2.6.24.6
linux linux kernel 2.6.22_rc7
linux linux kernel 2.4.36
linux linux kernel 2.6.23.12
linux linux kernel 2.6.24_rc5
linux linux kernel 2.6.19.6
linux linux kernel 2.6.22.8
linux linux kernel 2.6.19.5
linux linux kernel 2.4.36.5
linux linux kernel 2.6.27.2
linux linux kernel 2.6.22.2
linux linux kernel 2.6.27.11
linux linux kernel 2.2.27
linux linux kernel 2.6.22.19
linux linux kernel 2.6.24.3
linux linux kernel 2.6.22_rc1
linux linux kernel 2.6.25.14
linux linux kernel 2.6.26.4
linux linux kernel 2.6.27.6
linux linux kernel 2.6.23.11
linux linux kernel 2.6.27.14
linux linux kernel 2.6.22.14
linux linux kernel 2.6

Igor Zhbanov discovered that NFS clients were able to create device nodes even when root_squash was enabled An authenticated remote attacker could create device nodes with open permissions, leading to a loss of privacy or escalation of privileges Only Ubuntu 810 and 904 were affected (CVE-2009-1072) ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-4307 Bryn M Reeves reported a denial of service in the NFS filesystem Local users can trigger a kernel BUG() due to a r ...

CWE-264 http://lkml.org/lkml/2008/7/23/148 http://www.openwall.com/lists/oss-security/2009/04/17/4 https://bugzilla.redhat.com/show_bug.cgi?id=496031 http://www.openwall.com/lists/oss-security/2009/04/16/2 http://www.openwall.com/lists/oss-security/2009/04/21/1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28 http://www.debian.org/security/2009/dsa-1787 http://secunia.com/advisories/34981 http://www.debian.org/security/2009/dsa-1800 http://secunia.com/advisories/35121 http://wiki.rpath.com/Advisories:rPSA-2009-0084 http://www.redhat.com/support/errata/RHSA-2009-1081.html http://secunia.com/advisories/35120 http://www.ubuntu.com/usn/usn-793-1 http://secunia.com/advisories/35656 http://secunia.com/advisories/35343 https://exchange.xforce.ibmcloud.com/vulnerabilities/50386 http://www.securityfocus.com/archive/1/503610/100/0/threaded http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d25141a818383b3c3b09f065698c544a7a0ec6e7 https://nvd.nist.gov https://usn.ubuntu.com/793-1/

Get Started

CVE-2009-1338

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect