CVE-2008-2148

CVE-2008-2148 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and other versions before 2.6.25.3 does not check file permissions when certain UTIME_NOW and UTIME_OMIT combinations are used, which allows local users to modify file times of arbitrary files, possibly leading to a denial of service.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.