What is CVE-2009-1184?

CVE-2009-1184 is a Medium severity Linux kernel vulnerability with a CVSS score of 4.4 out of 10. CVE-2009-1184 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2009-1184?

CVE-2009-1184 has a CVSS score of 4.4 out of 10, rated Medium severity. The vector string is AV:L/AC:M/Au:N/C:P/I:P/A:P.

Is there a patch available for CVE-2009-1184?

No patch is currently available for CVE-2009-1184. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2009-1184 actively exploited?

CVE-2009-1184 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2009-1184

Medium

The selinux_ip_postroute_iptables_compat function in security/selinux/hooks.c in the SELinux subsystem in the Linux kernel before 2.6.27.22, and 2.6.28.x before 2.6.28.10, when compat_net is enabled, omits calls to avc_has_perm for the (1) node and (2) port, which allows local users to bypass intended restrictions on network traffic. NOTE: this was incorrectly reported as an issue fixed in 2.6.27.21.

Package Linux Kernel

Published 2009-05-05

Last modified 2026-04-23

CVSS version 2.0

Patch available

Awaiting data

CVSS 2.0 score

4.4

out of 10

Medium

Attack Vector

Local

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Vector string

AV:L/AC:M/Au:N/C:P/I:P/A:P

Weakness type

CWE-16

CVE-2009-1184 is classified as CWE-16

See CWE-16 on MITRE CWE for full details on this weakness type.

References

The following references provide additional information about CVE-2009-1184 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Lwn
http://lwn.net/Articles/331434/
Lwn
http://lwn.net/Articles/331435/
Secunia
http://secunia.com/advisories/35121
Secunia
http://secunia.com/advisories/35656
Debian Security
http://www.debian.org/security/2009/dsa-1800
Mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:118
Mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:119
Mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:135
Openwall
http://www.openwall.com/lists/oss-security/2009/05/04/1
Ubuntu Security
http://www.ubuntu.com/usn/usn-793-1
Launchpad
https://launchpad.net/bugs/cve/2009-1184
Kernel patch commit
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git%3Ba=commit%3Bh=910c9e41186762de3717baaf392ab5ff0c454496
Patch
Kernel patch commit
http://patchwork.ozlabs.org/patch/25238/
Patch

Details

CVE ID CVE-2009-1184

Severity Medium

CVSS score 4.4 / 10

CVSS version 2.0

Published 2009-05-05

Modified 2026-04-23

KEV No

Patch Awaiting data

Package linux

Frequently asked questions

What is CVE-2009-1184?

CVE-2009-1184 is a Medium severity Linux kernel vulnerability with a CVSS score of 4.4 out of 10 . CVE-2009-1184 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2009-1184?

CVE-2009-1184 has a CVSS score of 4.4 out of 10, rated Medium severity (CVSS 2.0). The vector string is AV:L/AC:M/Au:N/C:P/I:P/A:P.
Is there a patch available for CVE-2009-1184?

No patch is currently available for CVE-2009-1184. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
Is CVE-2009-1184 actively exploited?

No — CVE-2009-1184 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.