CVE-2008-0001

Publication date 15 January 2008

Last updated 24 July 2024

VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Not in release
linux-source-2.6.15	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-51.66
linux-source-2.6.17	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.6.17.1-12.43
	6.06 LTS dapper	Not in release
linux-source-2.6.20	7.10 gutsy	Not in release
	7.04 feisty	Fixed 2.6.20-16.34
	6.10 edgy	Not in release
	6.06 LTS dapper	Not in release
linux-source-2.6.22	7.10 gutsy	Fixed 2.6.22-14.51
	7.04 feisty	Not in release
	6.10 edgy	Not in release
	6.06 LTS dapper	Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details

References

Related Ubuntu Security Notices (USN)

USN-574-1
Linux kernel vulnerabilities
4 February 2008

USN-578-1
Linux kernel vulnerabilities
14 February 2008

Other references

https://www.cve.org/CVERecord?id=CVE-2008-0001