Re: [SECURITY] [DSA 1111-2] New Linux kernel 2.6.8 packages fix privilege escalation

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1111-2] New Linux kernel 2.6.8 packages fix privilege escalation
From: Cedar Cox <cox@waterstoneinc.com>
Date: Thu, 27 Jul 2006 09:19:16 -0600
Message-id: <[🔎] 44C8D974.7030900@waterstoneinc.com>
In-reply-to: <20060726202310.GA5278@galadriel.inutil.org>
References: <20060726202310.GA5278@galadriel.inutil.org>

Is this in fact CVE-2006-3626?

Moritz Muehlenhoff wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1111-2                    security@debian.org
http://www.debian.org/security/                               Dann Frazier
July 26th, 2006                         http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : kernel-source-2.6.8 et. al.
Vulnerability  : race condition
Problem-Type   : local
Debian-specific: no
CVE ID         : CVE-2006-3625

It was discovered that a race condition in the process filesystem can lead
to privilege escalation.



--
-Cedar

What's an Intel chip doing in a Mac?
  A whole lot more than it's ever done in a PC.

Reply to:

Prev by Date: intent having somewhat swell
Next by Date: Re: debian testing Packages.bz2 md5 sum mismatch
Previous by thread: intent having somewhat swell
Next by thread: Re: [SECURITY] [DSA 1125-2] New drupal packages fix execution of arbitrary web script code (revised packages)
Index(es):
- Date
- Thread