CVE-2008-4554

Impact:
Important
Public Date:
2008-10-09
Bugzilla:
466707: CVE-2008-4554 kernel: don't allow splice() to files opened with O_APPEND

The MITRE CVE dictionary describes this issue as:

The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.

Find out more about CVE-2008-4554 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
MRG Grid for RHEL 5 Server (kernel-rt) RHSA-2009:0009 2009-01-22
Red Hat Enterprise Linux 5 (kernel) RHSA-2008:1017 2008-12-16

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.