Red Hat Bugzilla – Bug 133100
CAN-2004-0813 SG_IO unsafe user command execution
Last modified: 2013-03-06 00:57:31 EST
It is possible that a user with read only access to a device to issue
arbitrary commands (ie 'write' or 'erase firmware').
There is a discussion on the lkml
See bug 133098