Summary: | kernel: ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | D'juan McDonald (domhnall) <flopwiki> |
Component: | Kernel | Assignee: | Gentoo Kernel Security <security-kernel> |
Status: | RESOLVED FIXED | ||
Severity: | critical | CC: | hydrapolic, kernel |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.suse.com/show_bug.cgi?id=1140671 | ||
Whiteboard: | A1 [stable?] | ||
Package list: | Runtime testing required: | --- |
Description
D'juan McDonald (domhnall)
2019-07-17 16:38:23 UTC
Fixed in kernel releases: [From IRC]: <gregkh> 4.4.185 4.9.185 4.14.133 4.19.58 5.1.17 5.2 gentoo-sources as above. Genpatches: - 4.4.186 - 4.9.186 - 4.14.142 - 4.19.59 - 5.1.17 (In reply to Michael 'veremitz' Everitt from comment #1) > Fixed in kernel releases: > > [From IRC]: > <gregkh> 4.4.185 4.9.185 4.14.133 4.19.58 5.1.17 5.2 > > gentoo-sources as above. > > Genpatches: > - 4.4.186 > - 4.9.186 > - 4.14.142 > - 4.19.59 > - 5.1.17 Vulnerable versions long gone |