CVE-2009-1883

CVE-2009-1883 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 privileges to force a driver outage.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.