CVE-2009-3725

Linux Kernel < 2.6.31.5 - Access Control

Title source: rule

Description

The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass intended access restrictions and gain privileges via calls to functions in these subsystems.

References (13)

[Mailing List, Third Party Advisory] http://marc.info/?l=linux-kernel&m=125449888416314&w=2

[Mailing List, Third Party Advisory] http://marc.info/?l=oss-security&m=125715484511380&w=2

[Mailing List, Third Party Advisory] http://marc.info/?l=oss-security&m=125716192622235&w=2

[Patch, Vendor Advisory] http://patchwork.kernel.org/patch/51382/

[Patch, Vendor Advisory] http://patchwork.kernel.org/patch/51383/

[Patch, Vendor Advisory] http://patchwork.kernel.org/patch/51384/

[Patch, Vendor Advisory] http://patchwork.kernel.org/patch/51387/

[Third Party Advisory] http://secunia.com/advisories/37113

[Third Party Advisory] http://secunia.com/advisories/38905

[Vendor Advisory] http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.5

[Patch, Third Party Advisory] http://www.securityfocus.com/bid/36834

[Third Party Advisory] http://www.ubuntu.com/usn/usn-864-1

[Exploit, Third Party Advisory] http://xorl.wordpress.com/2009/10/31/linux-kernel-multiple-capabilities-missing-checks/

Scores

EPSS 0.0004

EPSS Percentile 13.0%

Classification

CWE

CWE-264

Status draft

Affected Products (6)

linux/linux_kernel < 2.6.31.5

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

Timeline

Published Nov 06, 2009

Tracked Since Feb 18, 2026