Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling

To: Moritz Muehlenhoff <jmm@inutil.org>, 309429@bugs.debian.org
Subject: Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
From: Horms <horms@debian.org>
Date: Thu, 19 May 2005 13:28:19 +0900
Message-id: <[🔎] 20050519042818.GF23065@verge.net.au>
Reply-to: Horms <horms@debian.org>, 309429@bugs.debian.org
In-reply-to: <[🔎] E1DXw9g-0000EU-N5@vserver151.vserver151.serverflex.de>
References: <[🔎] E1DXw9g-0000EU-N5@vserver151.vserver151.serverflex.de>

On Tue, May 17, 2005 at 09:06:16AM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.6.8
> Severity: grave
> Justification: user security hole
> 
> 
> Two new local privilege escalations have been found in the 2.6 kernels;
> input to the pktcdvd and raw ioctls is passed unchecked. Both issues
> have been fixed in 2.6.11.10. 2.4 does not seem to be affected.
> At least one of the issues is CAN-2005-1264.

Thanks, I will get this into SVN asap.

-- 
Horms

Reply to:

References:
- Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Bug#309307: marked as done (kernel-image-2.4.27-sparc in sarge lacks security fixes from kernel-source-2.4.27 2.4.27-9)
Next by Date: Bug#304483: mkinitrd does not create "mdadm -A" record for /boot partition on raid1 when initrd.img is built
Previous by thread: Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
Next by thread: Bug#309429: kernel-source-2.6.8: Local privilege escalation in pktcdvd und raw ioctl handling
Index(es):
- Date
- Thread