CVE-2009-4141

Priority
Medium
Description
Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in
the Linux kernel before 2.6.33-rc4-git1 allows local users to gain
privileges via vectors that include enabling O_ASYNC (aka FASYNC or
FIOASYNC) on a locked file, and then closing this file.
References
Notes
mdeslaur> introduced by http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=233e70f4228e78eb2f80dc6650f65d3ae3dbf17c
Assigned-to
ogasawara
Package
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.32)
Ubuntu 8.04 LTS (Hardy Heron):not-affected
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Patches:
Upstream:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=53281b6d3
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:20:25 UTC (commit 5347)