CVE-2009-1895 kernel: personality: fix PER_CLEAR_ON_SETID
Issue
- This is a backport request to fix CVE-2009-1895 on 5.2.z async erratum.
-
The current PER_CLEAR_ON_SETID mask on Linux does not include neither ADDR_COMPAT_LAYOUT, nor MMAP_PAGE_ZERO.
Environment
- Red Hat Enterprise Linux 5 Update 2
- All architectures
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.