Unrated severityNVD Advisory· Published Apr 25, 2008· Updated Jun 16, 2026
CVE-2008-1940
CVE-2008-1940
Description
The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce user_transition_deny and user_transition_allow rules for the (1) sys_setfsuid and (2) sys_setfsgid calls, which allows local users to bypass restrictions for those calls.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.2:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.3:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.33.4:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.4.34:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.6.18:*:*:*:*:*:*:*
- cpe:2.3:a:grsecurity:grsecurity_kernel_patch:2.6.24.4:*:*:*:*:*:*:*
- Range: <2.1.11-2.6.24.5, <2.1.11-2.4.36.2
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.