VDB
GSD-2009-3547
GSD-2009-3547
PUBLISHED
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
Timeline
- Sep 4, 2008 CVE Published
- Nov 3, 2009 PoC Published
- Nov 5, 2009 PoC Published
- Nov 12, 2009 PoC Published
- Aug 31, 2025 PoC Published
- Feb 12, 2026 PoC Published
- Apr 16, 2026 Distribution Patch
- Apr 16, 2026 Security Advisory
- Apr 16, 2026 Security Advisory
- Apr 16, 2026 Security Advisory
- Apr 16, 2026 Security Advisory
References
- oval:org.mitre.oval:def:11513 vdb
- RHSA-2009:1672 vendor-advisory
- 20100625 VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel mailing-list
- 36901 vdb
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ad3960243e55320d74195fb85c975e0a8cc4466c url
- RHSA-2009:1540 vendor-advisory
- 38794 third-party-advisory
- [security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates mailing-list
- [linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs mailing-list
- SUSE-SA:2010:001 vendor-advisory
- RHSA-2009:1541 vendor-advisory
- MDVSA-2009:329 vendor-advisory
- 37351 third-party-advisory
- SUSE-SA:2009:056 vendor-advisory
- SUSE-SA:2010:012 vendor-advisory
- oval:org.mitre.oval:def:7608 vdb
- [oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference mailing-list
- RHSA-2009:1548 vendor-advisory
- 38834 third-party-advisory
- [linux-kernel] 20091014 fs/pipe.c null pointer dereference mailing-list
…and 9 more