Security Advisory

CVE-2008-4554

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-10-15 19:00:00

Last updated 2024-08-07 10:17:09

Assigner mitre

State PUBLISHED

Description

The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.

← Browse all CVEs View on cve.org ↗