CVE-2008-5029

Priority
Medium
Description
The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4,
2.6.26, and earlier makes indirect recursive calls to itself through calls
to the fput function, which allows local users to cause a denial of service
(panic) via vectors related to sending an SCM_RIGHTS message through a UNIX
domain socket and closing file descriptors.
Ubuntu-Description
It was discovered that the Unix Socket handler did not correctly process
the SCM_RIGHTS message. A local attacker could make a malicious socket
request that would crash the system, leading to a denial of service.
References
Notes
kees> raised priority due to public PoC
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-22.45)
Patches:
Upstream:linux-2.6.27.x: 1dbbd0bf5d15397a4e4a1ae3e3e82e0fe4f83c3a
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:19:16 UTC (commit 5347)