Local Privilege Escalation Vulnerability in Linux Kernel by Vendor
CVE-2004-1068

Currently unrated

Key Information:

Vendor: Linux
Status: Linux Kernel; Enterprise Linux; Enterprise Linux Desktop; Ubuntu Linux
Vendor: CVE Published:; 10 January 2005

Summary

A vulnerability exists in the unix_dgram_recvmsg function of the Linux kernel, specifically in versions 2.4.27 and earlier, as well as 2.6.x up to 2.6.9. This flaw allows local users to exploit a race condition, potentially escalating their privileges and accessing restricted functions or data. The vulnerability can lead to severe security risks in systems running affected kernel versions, making it crucial for users and administrators to apply necessary patches and updates.

References

http://secunia.com/advisories/20163

third-party-advisoryx_refsource_SECUNIA

http://www.debian.org/security/2006/dsa-1082

vendor-advisoryx_refsource_DEBIAN

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRAKE

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Nov 29, 2004