CVE-2010-4347

The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpi_debugfs_init function in drivers/acpi/debugfs.c.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*

History

No history.

Information

Published : 2010-12-22 21:00

Updated : 2024-02-28 11:41


NVD link : CVE-2010-4347

Mitre link : CVE-2010-4347

CVE.ORG link : CVE-2010-4347


JSON object : View

Products Affected

linux

  • linux_kernel

suse

  • linux_enterprise_real_time_extension

opensuse

  • opensuse
CWE
CWE-269

Improper Privilege Management