[kernel-sec-discuss] r1045 - active
dannf at alioth.debian.org
dannf at alioth.debian.org
Thu Nov 29 15:28:58 UTC 2007
Author: dannf
Date: 2007-11-29 15:28:58 +0000 (Thu, 29 Nov 2007)
New Revision: 1045
Modified:
active/CVE-2007-4571
Log:
add description
Modified: active/CVE-2007-4571
===================================================================
--- active/CVE-2007-4571 2007-11-29 15:27:54 UTC (rev 1044)
+++ active/CVE-2007-4571 2007-11-29 15:28:58 UTC (rev 1045)
@@ -5,6 +5,11 @@
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.8
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=600
Description:
+ The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux
+ Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return
+ the correct write size, which allows local users to obtain sensitive
+ information (kernel memory contents) via a small count argument, as
+ demonstrated by multiple reads of /proc/driver/snd-page-alloc.
Ubuntu-Description:
Notes:
dannf> ABI changer, was reverted from etch-security (r9547)
More information about the kernel-sec-discuss
mailing list