Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Debian_linux | Debian | 3.1 (including) | 3.1 (including) |