Linux Kernel 'truncate()' Local Privilege Escalation Vulnerability

Linux Kernel 'truncate()' Local Privilege Escalation Vulnerability

References:

[Security-announce] VMSA-2009-0014 VMware ESX patches for DHCP, Service Console (VMware)
ChangeLog-2.6.22 (Linux)
Linux Homepage (Linux)
open() call allows setgid bit when user is not in new file's group (David Watson)
Summary of changes from v2.4.36.7 to v2.4.36.8 (Linux)

Privacy Statement
Copyright 2010, SecurityFocus