Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN

To: Moritz Muehlenhoff <jmm@debian.org>, 389282@bugs.debian.org
Subject: Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN
From: maximilian attems <maks@sternwelten.at>
Date: Tue, 26 Sep 2006 19:07:19 +0200
Message-id: <[🔎] 20060926170719.GA4423@baikonur.stro.at>
Reply-to: maximilian attems <maks@sternwelten.at>, 389282@bugs.debian.org
In-reply-to: <[🔎] 20060924222433.19073.95389.reportbug@localhost.localdomain>
References: <[🔎] 20060924222433.19073.95389.reportbug@localhost.localdomain>

On Mon, Sep 25, 2006 at 12:24:33AM +0200, Moritz Muehlenhoff wrote:
> 
> The LSM for BSD secure levels is broken by design and unmaintained.
> (CVE-2005-4351 and CVE-2005-4252). It's scheduled for removal
> upstream (http://lkml.org/lkml/2006/8/2/180), but hasn't been dropped
> yet in 2.6.18.
> 
> While it's not enabled in the binary builds, it's selectable for
> users building their own kernels. Attached you can find a patch
> to make this LSM depend on BROKEN.

plese send that upstream, afaik it's disabled in any current sid/testing
linux-image.
 
> Cheers,
>         Moritz
> 

best regards

-- 
maks

Reply to:

Follow-Ups:
- Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN
  - From: Moritz Muehlenhoff <jmm@inutil.org>

References:
- Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN
  - From: Moritz Muehlenhoff <jmm@debian.org>

Prev by Date: Bug#387460: linux-image-2.6.17-2-686: kernel panic when trying to add vlan to a slave bonded interface
Next by Date: Bug#387168: marked as done (Missing SATA support for VIA VT8251 based boards)
Previous by thread: Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN
Next by thread: Bug#389282: linux-2.6: Make BSD secure levels depend on CONFIG_BROKEN
Index(es):
- Date
- Thread