[kernel-sec-discuss] r2104 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Dec 24 17:25:45 UTC 2010
Author: jmm
Date: 2010-12-24 17:25:45 +0000 (Fri, 24 Dec 2010)
New Revision: 2104
Removed:
active/CVE-2010-kallsyms-permissions-should-be-400
Log:
not a security issue, for a distro kernel they're known anyway
Deleted: active/CVE-2010-kallsyms-permissions-should-be-400
===================================================================
--- active/CVE-2010-kallsyms-permissions-should-be-400 2010-12-22 07:26:29 UTC (rev 2103)
+++ active/CVE-2010-kallsyms-permissions-should-be-400 2010-12-24 17:25:45 UTC (rev 2104)
@@ -1,16 +0,0 @@
-Candidate: needed
-Description:
- /proc/kallsyms should have mode 400
-References:
- http://thread.gmane.org/gmane.linux.kernel/1063039/focus=1068360
-Notes:
- restrictions were added to the kernel, then dropped due to a regression, and
- then an alternative approach was proposed, but it doesn't seem to be accepted.
- perhaps this is better handled via startup scripts. in any case, its low
- priority since its just info leaks.
-Bugs:
-upstream:
-2.6.32-upstream-stable:
-linux-2.6:
-2.6.26-lenny-security:
-2.6.32-squeeze-security:
More information about the kernel-sec-discuss
mailing list