CVE-2004-1337 Information

Description

The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded which allows local users to gain privileges.

Reference

http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930 http://marc.info/?l=bugtraq&m=110384535113035&w=2 http://www.securityfocus.com/bid/12093 https://exchange.xforce.ibmcloud.com/vulnerabilities/18673