oss-sec: Re: CVE request: kernel: connector security bypass

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

oss-sec mailing list archives

Re: CVE request: kernel: connector security bypass

From: Mark J Cox <mjc () redhat com>
Date: Mon, 2 Nov 2009 11:37:21 +0000 (GMT)

On Mon, 2 Nov 2009, Eugene Teo wrote:

1/ uvesafb/connector: Disallow unprivileged users to send netlink packets
upstream commit: cc44578b5a508889beb8ae3ccd4d2bbdf17bc86c
introduced in v2.6.24-rc1; fixed in v2.6.32-rc3

2/ pohmelfs/connector: Disallow unprivileged users to configure pohmelfs
upstream commit: 98a5783af02f4c9b87b676d7bbda6258045cfc76
(staging/experimental)

3/ dst/connector: Disallow unprivileged users to configure dst
upstream commit: 5788c56891cfb310e419c4f9ae20427851797431
(staging/experimental)

4/ dm/connector: Only process connector packages from privileged processes
upstream commit: 24836479a126e02be691e073c2b6cad7e7ab836a
introduced in v2.6.31-rc1; fixed in v2.6.32-rc3

References:
http://secunia.com/advisories/37113/
http://xorl.wordpress.com/2009/10/31/linux-kernel-multiple-capabilities-missing-checks/

I'm going to give one name to all four issues. (Allowed as they are allof flaw type 'missing capability checks', found by the same reporter, andfixed at the same time).


CVE-2009-3725

Mark

By Date By Thread

Current thread:

CVE request: kernel: connector security bypass Eugene Teo (Nov 02)
- Re: CVE request: kernel: connector security bypass Mark J Cox (Nov 02)