[kernel-sec-discuss] r1451 - dsa-texts
Dann Frazier
dannf at alioth.debian.org
Fri Aug 14 19:00:02 UTC 2009
Author: dannf
Date: 2009-08-14 19:00:01 +0000 (Fri, 14 Aug 2009)
New Revision: 1451
Modified:
dsa-texts/2.6.26-17lenny1
Log:
fix typo
Modified: dsa-texts/2.6.26-17lenny1
===================================================================
--- dsa-texts/2.6.26-17lenny1 2009-08-13 21:25:06 UTC (rev 1450)
+++ dsa-texts/2.6.26-17lenny1 2009-08-14 19:00:01 UTC (rev 1451)
@@ -17,8 +17,8 @@
CVE-2009-1895
- Julien Tinnes and Tavis Ormandy reported and issue in the Linux
- vulnerability code. Local users can take advantage of a setuid
+ Julien Tinnes and Tavis Ormandy reported an issue in the Linux
+ personality code. Local users can take advantage of a setuid
binary that can either be made to dereference a NULL pointer or
drop privileges and return control to the user. This allows a
user to bypass mmap_min_addr restrictions which can be exploited
More information about the kernel-sec-discuss
mailing list