Linux Kernel 'do_splice_from()' Local Security Bypass Vulnerability

The Linux kernel is prone to a local security-bypass vulnerability because the 'do_splice_from()' function fails to correctly reject file descriptors when performing certain file operations.

Attackers can exploit this issue to bypass restrictions on append mode when updating files to update arbitrary locations in the file.

Versions prior to Linux kernel 2.6.27 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus