Spoofing UID and PID in Linux Kernel Signal Handling

Spoofing UID and PID in Linux Kernel Signal Handling

CVE-2011-1182 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.