[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: remotely exploitable buffer overflow



On Wed, Mar 22, 2006 at 12:08:03PM +1100, Geoff Crompton wrote:
> Security focus list a remote buffer overflow vulnerability.
> http://www.securityfocus.com/bid/17178

This is wrong. The buffer overflow is limited to local users with
CAP_SYS_ADMIN.

The relevant commit in the upstream repository is
ee4bb818ae35f68d1f848eae0a7b150a38eb4168[1].

Bastian

[1]: http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ee4bb818ae35f68d1f848eae0a7b150a38eb4168

-- 
Respect is a rational process
		-- McCoy, "The Galileo Seven", stardate 2822.3

Attachment: signature.asc
Description: Digital signature


Reply to: