Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
tag 302704 +pending
thanks
On Sat, Apr 02, 2005 at 02:54:52PM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.4.27
> Severity: grave
> Tags: security
> Justification: user security hole
>
> CAN-2005-0750: Insufficient range checking in af_bluetooth allows local root exploit.
>
> This is the full advisory:
> http://lists.grok.org.uk/pipermail/full-disclosure/ attachments/20050327/3f128a09/adv1.pdf
>
> This has been fixed in 2.4.30rc3, a fix is available in Bitkeeper:
> http://linux.bkbits.net:8080/linux-2.4/gnupatch@4244717faf_jG6n164uKBvLcVKTAtw
Thanks, I have this fix in SVN.
--
Horms
Reply to: