The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 3.8.6 (including) | 3.9 (excluding) |
Linux_kernel | Linux | 3.9-rc1 (including) | 3.9-rc1 (including) |
Linux_kernel | Linux | 3.9-rc2 (including) | 3.9-rc2 (including) |
Linux_kernel | Linux | 3.9-rc3 (including) | 3.9-rc3 (including) |
Linux_kernel | Linux | 3.9-rc4 (including) | 3.9-rc4 (including) |