CVE-2009-0675

Name	CVE-2009-0675
Description	The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic" issue.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1749-1, DSA-1787-1, DSA-1794-1

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin
fai-kernels	source	etch	1.17+etch.24etch2		DSA-1794-1
linux-2.6	source	etch	2.6.18.dfsg.1-24etch2		DSA-1794-1
linux-2.6	source	lenny	2.6.26-13lenny2		DSA-1749-1
linux-2.6	source	(unstable)	2.6.29-1	low
linux-2.6.24	source	etch	2.6.24-6~etchnhalf.8etch1		DSA-1787-1
linux-2.6.24	source	(unstable)	(unfixed)	low
user-mode-linux	source	etch	2.6.18-1um-2etch.24etch2		DSA-1794-1