CVE-2009-4141 — Vulnetix

CVE-2009-4141 PUBLISHED

Reported by redhat · Published January 19, 2010

Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	*, n/a

Exploit Intelligence

http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html (vulncheck-nvd)
http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c (vulncheck-nvd)

Timeline

Jan 19, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 27, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 26, 2023 EPSS Score

References

x_refsource_CONFIRM
oval:org.mitre.oval:def:9201 vdb-entrysignaturex_refsource_OVAL
37806 vdb-entryx_refsource_BID
x_refsource_MISC
x_refsource_CONFIRM
x_refsource_CONFIRM
20100114 Locked fasync file descriptors can be referenced after free in >= 2.6.28 mailing-listx_refsource_FULLDISC
oval:org.mitre.oval:def:7054 vdb-entrysignaturex_refsource_OVAL
x_refsource_CONFIRM
39033 third-party-advisoryx_refsource_SECUNIA
x_refsource_MISC
38199 third-party-advisoryx_refsource_SECUNIA
RHSA-2010:0095 vendor-advisoryx_refsource_REDHAT
RHSA-2010:0046 vendor-advisoryx_refsource_REDHAT
SUSE-SA:2010:010 vendor-advisoryx_refsource_SUSE
RHSA-2010:0161 vendor-advisoryx_refsource_REDHAT

Open in Interactive Console →