CVE Database


Impact: Moderate
Public: 2004-07-10
Bugzilla: 396861: CVE-2007-6206 Issue with core dump owner


The MITRE CVE dictionary describes this issue as:

The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.

Find out more about CVE-2007-6206 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (kernel) RHSA-2009:0001 January 08, 2009
Red Hat Enterprise Linux version 3 (kernel) RHSA-2008:0211 May 07, 2008
Red Hat Enterprise Linux version 4 (kernel) RHSA-2008:0055 January 31, 2008
Red Hat Enterprise Linux version 5 (kernel) RHSA-2008:0089 January 23, 2008
Red Hat Linux Advanced Workstation 2.1 (kernel) RHSA-2008:0787 January 05, 2009

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.