The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2011-03-22T17:00:00
Updated: 2011-04-09T09:00:00
Reserved: 2011-02-14T00:00:00
Link: CVE-2011-1022
JSON object: View
NVD Information
Status : Modified
Published: 2011-03-22T17:55:01.987
Modified: 2011-09-07T03:15:15.597
Link: CVE-2011-1022
JSON object: View
Redhat Information
No data.
CWE