QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-1338

Back to search

CVE-2009-1338

Published: Apr 22, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The kill_something_info function in kernel/signal.c in the Linux kernel before 2.6.28 does not consider PID namespaces when processing signals directed to PID -1, which allows local users to bypass the intended namespace isolation, and send arbitrary signals to all processes in all namespaces, via a kill command.

VendorProductVersions

n/a

n/a

affected
n/a

References

35656
third-party-advisory
x_refsource_SECUNIA
20090516 rPSA-2009-0084-1 kernel
mailing-list
x_refsource_BUGTRAQ
35120
third-party-advisory
x_refsource_SECUNIA
USN-793-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2009:1081
vendor-advisory
x_refsource_REDHAT
34981
third-party-advisory
x_refsource_SECUNIA
DSA-1800
vendor-advisory
x_refsource_DEBIAN
35343
third-party-advisory
x_refsource_SECUNIA
DSA-1787
vendor-advisory
x_refsource_DEBIAN
35121
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2009-1338 - Security Vulnerability | QwikSec