CVE-2009-2848

Priority
Description
The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier,
does not properly clear the current->clear_child_tid pointer, which allows
local users to cause a denial of service (memory corruption) or possibly
gain privileges via a clone system call with CLONE_CHILD_SETTID or
CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread
creation and exit.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2020-01-29 19:35:56 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)