Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ima_lsm_rule_init function in security/integrity/ima/ima_policy.c in the Linux kernel before 2.6.37, when the Linux Security Modules (LSM) framework is disabled, allows local users to bypass Integrity Measurement Architecture (IMA) rules in opportunistic circumstances by leveraging an administrator's addition of an IMA rule for LSM.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel‘ima_lsm_rule_init’函数安全绕过漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 2.6.37之前版本中的security/integrity/ima/ima_policy.c中的ima_lsm_rule_init函数中存在漏洞。当Linux Security Modules (LSM)框架被禁用时,本地攻击者可利用该漏洞通过利用管理员添加一个LSM的IMA规则在投机情况下绕过Integrity Me
CVSS Information
N/A
Vulnerability Type
N/A