CVE-2008-0009

CVE-2008-0009 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.