[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling

On Tue, May 17, 2005 at 09:06:16AM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.6.8
> Severity: grave
> Justification: user security hole
> Two new local privilege escalations have been found in the 2.6 kernels;
> input to the pktcdvd and raw ioctls is passed unchecked. Both issues
> have been fixed in 2.4 does not seem to be affected.
> At least one of the issues is CAN-2005-1264.

Thanks, I will get this into SVN asap.


Reply to: