Summary: | Kernel: Local privilege escalation (CVE-2006-3626) | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Daniel Black (RETIRED) <dragonheart> | ||||
Component: | Kernel | Assignee: | Gentoo Security <security> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | normal | CC: | agriffis, chrb, jesse, johnm, kang, kernel, kumba, marineam, phil | ||||
Priority: | High | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
URL: | http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.17.y.git;a=commit;h=4a7ac3ab06932949d3069c1811f6f2a310f656c4 | ||||||
Whiteboard: | [linux <2.6.16.25] [linux >=2.6.17 <2.6.17.5] | ||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Daniel Black (RETIRED)
2006-07-14 23:40:42 UTC
Please do *not* use the 2.6.16.25 or 2.6.17.5 fix; I'm attaching a better one which shouldn't break HAL & etc... Created attachment 91781 [details, diff]
Patch
Maintainers please bump your genpatches (2.6.16-15 or 2.6.17-4) or use the attached patch (don't use 2.6.17.5): ck-sources: marineam hardened-sources-2.6: johnm, hardened hppa-sources: GMSoft mips-sources: `Kumba rsbac-sources: kang sh-sources: sh suspend2-sources: brix usermode-sources: dang xbox-sources: chrb xen-sources: chrb, agriffis workaround for those waiting for a release is to mount proc with options nosuid as suggested by padde in #gentoo-bugs gentoo-sources-2.6.16/2.6.17 -> done suspend2-sources-2.6.16/2.6.17 -> done openvz-sources-026.015 (2.6.16) -> done ck-sources-2.6.16/2.6.17 -> done hardened-sources-2.6.16-r11 bumped with genpatches 14 usermode-sources bumped. (In reply to comment #9) I ment 15 *** Bug 140581 has been marked as a duplicate of this bug. *** *** Bug 140797 has been marked as a duplicate of this bug. *** (In reply to comment #4) > Maintainers please bump your genpatches (2.6.16-15 or 2.6.17-4) or use the > attached patch (don't use 2.6.17.5): > > ck-sources: marineam > hardened-sources-2.6: johnm, hardened > hppa-sources: GMSoft > mips-sources: `Kumba > rsbac-sources: kang > sh-sources: sh > suspend2-sources: brix > usermode-sources: dang > xbox-sources: chrb > xen-sources: chrb, agriffis > 2.6.16.26 fix these issues right? If so I have copied xen-sources-2.6.16.18 to xen-sources-2.6.16.26 and and it WFM on my xen test box. HTH. (In reply to comment #14) > 2.6.16.26 fix these issues right? If so I have copied xen-sources-2.6.16.18 to > xen-sources-2.6.16.26 and and it WFM on my xen test box. Yes, .26 fixes these issues correctly. Fixed on hppa. First commit from my new place \o/ I've updated xen and xbox -sources to 2.6.16.26. SH, RSBAC, this one too. Bump or patch. rsbac-sources bumped to 2.6.18 in ~ As discussed in the past, SH no longer is kept track of by Gentoo Kernel Security. Closing bug. |