Linux Kernel 2.6.30 - 'tun_chr_pool()' Null Pointer Dereference

Author: Christian Borntraeger
type: dos
platform: linux
port: 
date_added: 2009-06-17  
date_updated: 2014-05-01  
verified: 1  
codes: CVE-2009-1897;OSVDB-55923  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 33088.txt  

source: https://www.securityfocus.com/bid/35724/info

The Linux kernel is prone to a local NULL-pointer dereference vulnerability.

A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash an affected kernel, denying service to legitimate users.

This issue was introduced in Linux kernel 2.6.30.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/33088-1.tgz
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/33088-2.tgz