The Linux Kernel is prone to an unauthorized-access vulnerability because of an error in the definition of the ‘PER_CLEAR_ON_SETID’ personalities mask. These masks are defined in the ‘include/linux/personality.h’ source file.
An attacker can exploit this issue to perform privileged operations on a vulnerable computer, which may aid in further attacks.
Published: Jul 13 2009 12:00AM
Updated: Jul 13 2009 06:26PM