Linux kernel before 2.6.25.2 does not apply a certain protection mechanism for fcntl functionality, which allows local users to (1) execute code in parallel or (2) exploit a race condition to obtain "re-ordered access to the descriptor table."
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1669 IDENTIFIER = WIND00122879
WIND00122822.zip for 2.0
WIND00123783.zip for 1.4
WIND00123784.zip for 1.5
1. Unzip the patch under [install_dir]/updates
2. Install the patch CD by entering the patch CD directory and run setup_linux.
3. This is a source only patch so you will have to build the kernel
4. Issue a make fs and make the kernel in a configured directory.
5. Upload the kernel and rootfs into the target and boot it up.
