CVE-2009-1883

Published: 18 September 2009

The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 privileges to force a driver outage.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream Needed