CVE-2009-2849

Published: 18 August 2009

The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to "suspend_* sysfs attributes" and the (1) suspend_lo_store or (2) suspend_hi_store functions. NOTE: this is only a vulnerability when sysfs is writable by an attacker.

Priority

Negligible

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.31)
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream Not vulnerable