CVE-2009-0675

Priority
Description
The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel
before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN
capability is absent, instead of when this capability is present, which
allows local users to reset the driver statistics, related to an "inverted
logic" issue.
Ubuntu-Description
Network interfaces statistics for the SysKonnect FDDI driver did not
check capabilities. A local user could reset statistics, potentially
interfering with packet accounting systems.
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.28.6)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 11:49:08 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)