CVE-2009-0859

CVE-2009-0859 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:N/A:C

The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel before 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstrated by running the ipcs program.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.