The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging the CAPSYSADMIN capability for write access to the (1) setftracepid or (2) setgraphfunction file, and then making an lseek system call.