CVE-2008-1669

Linux kernel before 2.6.25.2 does not apply a certain protection mechanism for fcntl functionality, which allows local users to (1) execute code in parallel or (2) exploit a race condition to obtain "re-ordered access to the descriptor table."

🔗 References (90)

• secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-06/msg00006.html
• secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00002.html
• secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00007.html
• secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00012.html
• secalert@redhathttp://lists.vmware.com/pipermail/security-announce/2008/000023.html
• secalert@redhathttp://secunia.com/advisories/30077
• secalert@redhathttp://secunia.com/advisories/30101
• secalert@redhathttp://secunia.com/advisories/30108
• secalert@redhathttp://secunia.com/advisories/30110
• secalert@redhathttp://secunia.com/advisories/30112
• secalert@redhathttp://secunia.com/advisories/30116
• secalert@redhathttp://secunia.com/advisories/30164
• secalert@redhathttp://secunia.com/advisories/30252
• secalert@redhathttp://secunia.com/advisories/30260
• secalert@redhathttp://secunia.com/advisories/30276