CVE-2008-1940

The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce user_transition_deny and user_transition_allow rules for the (1) sys_setfsuid and (2) sys_setfsgid calls, which allows local users to bypass restrictions for those calls.
Configurations

Configuration 1

cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.2:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.4:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.3:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.6.24.4:*:*:*:*:*:*:*
cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.34:*:*:*:*:*:*:*

Information

Published : 2008-04-25 06:05

Updated : 2017-08-08 01:30


NVD link : CVE-2008-1940

Mitre link : CVE-2008-1940

Products Affected
No products.
CWE