CVE
- Id
- 10962
- CVE No.
- CVE-2004-2536
- Status
- Candidate
- Description
- The exit_thread function (process.c) in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS io_bitmap pointers if a process obtains IO access permissions from the ioperm function but does not drop those permissions when it exits, which allows other processes to access the per-TSS pointers, access restricted memory locations, and possibly gain privileges.
- Phase
- Assigned (20051025)
- Votes
- None (candidate not yet proposed)
- Comments