Summary: | Linux <=2.6.26.5 wan: Missing capability checks in sbni_ioctl() (CVE-2008-3525) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Kernel | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | kernel |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f2455eb176ac87081bbfc9a44b21c7cd2bc1967e | ||
Whiteboard: | [linux <=2.6.26.5] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2008-09-12 13:22:16 UTC
The relevant patch is included in versions 2.6.25-r7 and 2.6.26-r2 of hardened-sources. hardened-kernel unaffected at present time. Removing alias. PS: Anything using >=genpatches-2.6.25-6 is unaffected |