Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Sat, 02 Apr 2005 14:54:52 +0200
Message-id: <[🔎] E1DHi9M-0004F8-Ui@localhost.localdomain>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 302704@bugs.debian.org

Package: kernel-source-2.4.27
Severity: grave
Tags: security
Justification: user security hole

CAN-2005-0750: Insufficient range checking in af_bluetooth allows local root exploit.

This is the full advisory:
http://lists.grok.org.uk/pipermail/full-disclosure/ attachments/20050327/3f128a09/adv1.pdf

This has been fixed in 2.4.30rc3, a fix is available in Bitkeeper:
http://linux.bkbits.net:8080/linux-2.4/gnupatch@4244717faf_jG6n164uKBvLcVKTAtw

Cheers,
        Moritz 

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.11
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)

Reply to:

Follow-Ups:
- Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
  - From: Horms <horms@debian.org>

Prev by Date: Bug#294867: base: de4x5.ko generates endless loop of errors with phobos p430tx
Next by Date: Bug#302705: CAN-2005-0749: Potential DOS in elf_load_library()
Previous by thread: Bug#294867: base: de4x5.ko generates endless loop of errors with phobos p430tx
Next by thread: Bug#302704: CAN-2005-0750: Possible local root exploit through insufficient range checking in af_bluetooth
Index(es):
- Date
- Thread