231750 – (CVE-2008-3247) Linux < 2.6.25.11 fix ldt limit for 64 bit (CVE-2008-3247)

Bug 231750 (CVE-2008-3247) - Linux < 2.6.25.11 fix ldt limit for 64 bit (CVE-2008-3247)

Summary: Linux < 2.6.25.11 fix ldt limit for 64 bit (CVE-2008-3247)

Status:	RESOLVED FIXED

Alias:	CVE-2008-3247

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	AMD64 Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://git.kernel.org/?p=linux/kernel...
Whiteboard:	[linux >=2.6.25 <2.6.25.11]
Keywords:

Depends on:
Blocks:

Reported:	2008-07-14 08:49 UTC by Bernd Marienfeldt
Modified:	2013-09-05 03:42 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Bernd Marienfeldt 2008-07-14 08:49:19 UTC

"We (the -stable team) are announcing the release of the 2.6.25.11
kernel.

It contains one bugfix, any user of the 2.6.25 kernel on x86-64 with
untrusted local users is very STRONGLY recommended to upgrade.
",

See also http://lwn.net/Articles/288473/

Reproducible: Always

Comment 1 Robert Buchholz (RETIRED) gentoo-dev

2008-07-14 11:16:38 UTC

Your link should probably read
http://lwn.net/Articles/289804/

Comment 2 Robert Buchholz (RETIRED) gentoo-dev

2008-07-20 20:48:14 UTC

Fix:
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.25.y.git;a=commit;h=74454a6a286bfce4bb23d89bd465f856fa6a6e19

Introduced in 2.6.25:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=54cd0eac7286b83ef1a657d2dddd74e0556209e7

Comment 3 kfm 2009-07-20 19:22:29 UTC

hardened-kernel unaffected at present time. Removing alias.

PS: >=genpatches-2.6.25-8 included the 2.6.25.11 patch