[kernel-sec-discuss] r1361 - dsa-texts
Dann Frazier
dannf at alioth.debian.org
Tue May 5 08:07:27 UTC 2009
Author: dannf
Date: 2009-05-05 08:07:27 +0000 (Tue, 05 May 2009)
New Revision: 1361
Modified:
dsa-texts/2.6.26-15lenny1
Log:
flesh out issue texts
Modified: dsa-texts/2.6.26-15lenny1
===================================================================
--- dsa-texts/2.6.26-15lenny1 2009-05-05 06:53:00 UTC (rev 1360)
+++ dsa-texts/2.6.26-15lenny1 2009-05-05 08:07:27 UTC (rev 1361)
@@ -30,6 +30,11 @@
filter based on the syscall numbers or argument details.
CVE-2009-0835
+
+ Roland McGrath discovered an issue on amd64 kernels with CONFIG_SECCOMP
+ enabled. By making a specially crafted syscall, local users can bypass
+ access restrictions.
+
CVE-2009-0859
Jiri Olsa discovered that a local user can cause a denial of
@@ -44,7 +49,17 @@
small number of 3-byte UTF-8 characters.
CVE-2009-1072
+
+ Igor Zhbanov reported that nfsd was not properly dropping CAP_MKNOD,
+ allowing users to create device nodes on file systems exported with
+ root_squash.
+
CVE-2009-1184
+
+ Dan Carpenter reported a coding issue in the selinux subsystem that
+ allows local users to bypass certain networking checks when running
+ with compat_net=1.
+
CVE-2009-1192
Shaohua Li reported an issue in the AGP subsystem they may allow
More information about the kernel-sec-discuss
mailing list