Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
On Tue, May 17, 2005 at 09:06:16AM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.6.8
> Severity: grave
> Justification: user security hole
> Two new local privilege escalations have been found in the 2.6 kernels;
> input to the pktcdvd and raw ioctls is passed unchecked. Both issues
> have been fixed in 220.127.116.11. 2.4 does not seem to be affected.
> At least one of the issues is CAN-2005-1264.
Thanks, I will get this into SVN asap.