Vulnerability identifier: #VU1039
Vulnerability risk: Medium
Exploitation vector: Local
Exploit availability: Yes
Operating systems & Components / Operating system
Vendor: Linux Foundation
The vulnerability allows a local user to obtain elevated privileges on the target system.
The weakness is due to race condition in the kernel memory subsystem in the management of copy-on-write operations on read-only memory mappings that lets attackers to overwrite kernel memory and gain kernel-level privileges.
Successful exploitation of the vulnerability results in gaining of root privileges on the vulnerable system.
Note: the vulnerability was being actively exploited.
Update to version 4.9-rc2.
Vulnerable software versions
Linux kernel: 2.6.0 - 4.8.3
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?