CVE-2009-3043

Linux Kernel < 2.6.31 - Resource Management Error

Title source: rule

Description

The tty_ldisc_hangup function in drivers/char/tty_ldisc.c in the Linux kernel 2.6.31-rc before 2.6.31-rc8 allows local users to cause a denial of service (system crash, sometimes preceded by a NULL pointer dereference) or possibly gain privileges via certain pseudo-terminal I/O activity, as demonstrated by KernelTtyTest.c.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Eric W. Biederman · cdoslinux

https://www.exploit-db.com/exploits/33193

View Code ZIP pw:eip

References (9)

[Vendor Advisory] http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc8

[Patch] http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5c58ceff103d8a654f24769bb1baaf84a841b0cc

[Exploit] http://lkml.org/lkml/2009/8/20/21

[Exploit] http://lkml.org/lkml/2009/8/20/27

[Various Sources] http://lkml.org/lkml/2009/8/20/68

[Exploit, Patch] http://www.securityfocus.com/bid/36191

[Mailing List] http://www.openwall.com/lists/oss-security/2009/08/31/1

[Mailing List] http://www.openwall.com/lists/oss-security/2009/09/03/6

[Mailing List] http://www.openwall.com/lists/oss-security/2009/09/03/7

Scores

EPSS 0.0015

EPSS Percentile 35.8%

Details

CWE

CWE-399

Status published

Products (50)

linux/linux_kernel 2.6.0

linux/linux_kernel 2.6.1

linux/linux_kernel 2.6.2

linux/linux_kernel 2.6.3

linux/linux_kernel 2.6.4

linux/linux_kernel 2.6.5

linux/linux_kernel 2.6.6

linux/linux_kernel 2.6.7

linux/linux_kernel 2.6.8

linux/linux_kernel 2.6.8.1

... and 40 more

Published Sep 02, 2009

Tracked Since Feb 18, 2026