[kernel-sec-discuss] r611 - active
Martin Pitt
mpitt at costa.debian.org
Wed Oct 11 11:17:33 UTC 2006
Author: mpitt
Date: 2006-10-11 11:17:33 +0000 (Wed, 11 Oct 2006)
New Revision: 611
Added:
active/CVE-2006-5173
Log:
add CVE-2006-5173
Added: active/CVE-2006-5173
===================================================================
--- active/CVE-2006-5173 (rev 0)
+++ active/CVE-2006-5173 2006-10-11 11:17:33 UTC (rev 611)
@@ -0,0 +1,23 @@
+Candidate: CVE-2006-5173
+References:
+ http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=47a5c6fa0e204a2b63309c648bb2fde36836c826
+Description:
+ Alignment Check (AC) flag in EFLAGS is not saved/restored during task
+ switch, thus was leaking to other tasks. Those eventually died with a
+ SIGBUS.
+Ubuntu-Description:
+ The task switching code did not save and restore EFLAGS of processes.
+ By starting a specially crafted executable, a local attacker could
+ exploit this to eventually crash many other running processes.
+Notes:
+ incorrect optimization in some later 2.6.x kernel, reverted
+ Local DoS
+Bugs:
+upstream:
+linux-2.6:
+2.6.8-sarge-security: N/A
+2.4.27-sarge-security: N/A
+2.6.10-hoary-security: N/A
+2.6.12-breezy-security: N/A
+2.6.15-dapper-security: needed
+2.6.17-edgy: needed
More information about the kernel-sec-discuss
mailing list