Medium severity4.7NVD Advisory· Published Sep 8, 2010· Updated Apr 29, 2026
CVE-2009-4895
CVE-2009-4895
Description
Race condition in the tty_fasync function in drivers/char/tty_io.c in the Linux kernel before 2.6.32.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via unknown vectors, related to the put_tty_queue and __f_setown functions. NOTE: the vulnerability was addressed in a different way in 2.6.32.9.
Affected products
8- cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.openwall.com/lists/oss-security/2010/06/15/2nvdMailing ListPatchThird Party Advisory
- bugzilla.kernel.org/show_bug.cginvdIssue TrackingPatch
- www.debian.org/security/2010/dsa-2094nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2010/06/15/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/06/15/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/06/15/5nvdMailing ListThird Party Advisory
- www.ubuntu.com/usn/USN-1000-1nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.6nvdBroken Link
News mentions
0No linked articles in our index yet.