Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Tue, 17 May 2005 09:06:16 +0200
Message-id: <[🔎] E1DXw9g-0000EU-N5@vserver151.vserver151.serverflex.de>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 309429@bugs.debian.org

Package: kernel-source-2.6.8
Severity: grave
Justification: user security hole


Two new local privilege escalations have been found in the 2.6 kernels;
input to the pktcdvd and raw ioctls is passed unchecked. Both issues
have been fixed in 2.6.11.10. 2.4 does not seem to be affected.
At least one of the issues is CAN-2005-1264.

Cheers,
        Moritz

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (990, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.4.29-vs1.2.10
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)

Reply to:

Follow-Ups:
- Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
  - From: Horms <horms@debian.org>
- Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
  - From: Horms <horms@debian.org>
- Bug#309429: marked as done (kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Re: Kernel Security Updates for Sarge
Next by Date: Processed: tagging 309429
Previous by thread: kernel-source-2.6.11_2.6.11-5_i386.changes ACCEPTED
Next by thread: Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
Index(es):
- Date
- Thread