CVE-2007-3848

Table of Contents

Impact:
Important
Public Date:
2007-08-14
Bugzilla:
250972: CVE-2007-3848 Privilege escalation via PR_SET_PDEATHSIG

The MITRE CVE dictionary describes this issue as:

Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die, which delivers an attacker-controlled parent process death signal (PR_SET_PDEATHSIG).

Find out more about CVE-2007-3848 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (kernel) RHSA-2007:1049 2007-12-03
Red Hat Enterprise Linux 4 (kernel) RHSA-2007:0939 2007-11-01
Red Hat Enterprise Linux 5 (kernel) RHSA-2007:0940 2007-10-22
Red Hat Enterprise Linux 2.1 (kernel) RHSA-2009:0001 2009-01-08
Red Hat Enterprise Linux 2.1 (kernel) RHSA-2008:0787 2009-01-05
Last Modified

CVE description copyright © 2017, The MITRE Corporation