The scm_check_creds function in net/core/scm.c in the Linux kernel prior to 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 3.9 |
||
linux linux kernel |