Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 91175

Summary: Kernel it87 and via686a Drivers Insecure File Creation
Product: Gentoo Security Reporter: Sune Kloppenborg Jeppesen (RETIRED) <jaervosz>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
URL: http://secunia.com/advisories/15204/
Whiteboard:
Package list:
Runtime testing required: ---

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-05-02 07:35:37 UTC 
Jean Delvare has reported a security issue in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
 
 The problem is that the it87 and via686a hardware monitoring drivers create the sysfs file "alarms" with insecure permissions granting write access to the file. This can be exploited to exhaust all available CPU resources by writing to the file.
Comment 1 Jakub Moc (RETIRED) gentoo-dev 2005-05-02 08:50:55 UTC 

*** This bug has been marked as a duplicate of 91173 ***