[kernel-sec-discuss] r1063 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Mon Dec 17 03:36:20 UTC 2007
Author: dannf
Date: 2007-12-17 03:36:19 +0000 (Mon, 17 Dec 2007)
New Revision: 1063
Modified:
active/CVE-2006-6058
Log:
update debian status
Modified: active/CVE-2006-6058
===================================================================
--- active/CVE-2006-6058 2007-12-17 02:05:46 UTC (rev 1062)
+++ active/CVE-2006-6058 2007-12-17 03:36:19 UTC (rev 1063)
@@ -17,10 +17,14 @@
dannf> ignored for sarge for now - only applies under very rare circumstances
and don't know if there's an upstream fix
jmm> We can ignore this, it has no practical ramifications
+ dannf> Though I agree its minor, I suspect its not so rare that admins
+ set user-mountable media's filesystem type to 'auto' in fstab,
+ allowing them to use any fs on the system. I could see this being
+ used to annoy sysadmins, e.g., in a university lab setting
Bugs:
-upstream: released (2.6.23.2)
-linux-2.6: ignored
-2.6.18-etch-security: ignored
+upstream: released (2.6.23.7, 2.6.24-rc1) [f44ec6f3f89889a469773b1fd894f8fcc07c29cf]
+linux-2.6: released (2.6.23-1) [bugfix/2.6.23.7.patch]
+2.6.18-etch-security: pending (2.6.18.dfsg.1-13etch6) [bugfix/minixfs-printk-hang.patch]
2.6.8-sarge-security: ignored
2.4.27-sarge-security: ignored
2.6.15-dapper-security: pending (2.6.15-29.61)
More information about the kernel-sec-discuss
mailing list