CVE-2007-4308

CVE-2007-4308 · LOW Severity

AV:L/AC:M/AU:N/C:N/I:N/A:P

The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.