[kernel-sec-discuss] r1725 - dsa-texts
Micah Anderson
micah at alioth.debian.org
Thu Feb 11 16:53:53 UTC 2010
Author: micah
Date: 2010-02-11 16:53:52 +0000 (Thu, 11 Feb 2010)
New Revision: 1725
Modified:
dsa-texts/2.6.26-21lenny3
Log:
justify paragraphs
Modified: dsa-texts/2.6.26-21lenny3
===================================================================
--- dsa-texts/2.6.26-21lenny3 2010-02-11 16:52:37 UTC (rev 1724)
+++ dsa-texts/2.6.26-21lenny3 2010-02-11 16:53:52 UTC (rev 1725)
@@ -21,45 +21,46 @@
CVE-2009-3939
Joseph Malicki reported that the dbg_lvl sysfs attribute for the
- megaraid_sas device driver had world-writable permissions, permitting
- local users to modify logging settings.
+ megaraid_sas device driver had world-writable permissions,
+ permitting local users to modify logging settings.
CVE-2009-4027
- Lennert Buytenhek reported a race in the mac80211 subsystem that may allow
- remote users to cause a denial of service (system crash) on a system
- connected to the same wireless network.
+ Lennert Buytenhek reported a race in the mac80211 subsystem that
+ may allow remote users to cause a denial of service (system crash)
+ on a system connected to the same wireless network.
CVE-2009-4536 & CVE-2009-4538
- Fabian Yamaguchi reported issues in the e1000 and e1000e drivers for Intel
- gigabit network adapters which allow remote users to bypass packet filters
- using specially crafted ethernet frames.
+ Fabian Yamaguchi reported issues in the e1000 and e1000e drivers
+ for Intel gigabit network adapters which allow remote users to
+ bypass packet filters using specially crafted ethernet frames.
CVE-2010-0003
Andi Kleen reported a defect which allows local users to gain read
- access to memory reachable by the kernel when the print-fatal-signals
- option is enabled. This option is disabled by default.
+ access to memory reachable by the kernel when the
+ print-fatal-signals option is enabled. This option is disabled by
+ default.
CVE-2010-0007
- Florian Westphal reported a lack of capability checking in the ebtables
- netfilter subsystem. If the ebtables module is loaded, local users can
- add and modify ebtables rules.
+ Florian Westphal reported a lack of capability checking in the
+ ebtables netfilter subsystem. If the ebtables module is loaded,
+ local users can add and modify ebtables rules.
CVE-2010-0291
- Al Viro reported several issues with the mmap/mremap system calls that
- allow local users to cause a denial of service (system panic) or obtain
- elevated privileges.
+ Al Viro reported several issues with the mmap/mremap system calls
+ that allow local users to cause a denial of service (system panic)
+ or obtain elevated privileges.
CVE-2010-0298 & CVE-2010-0306
Gleb Natapov discovered issues in the KVM subsystem where missing
- permission checks (CPL/IOPL) permit a user in a guest system to denial
- of service a guest (system crash) or gain escalated privileges with
- the guest.
+ permission checks (CPL/IOPL) permit a user in a guest system to
+ denial of service a guest (system crash) or gain escalated
+ privileges with the guest.
CVE-2010-0307
@@ -69,15 +70,15 @@
CVE-2010-0309
- Marcelo Tosatti fixed an issue in the PIT emulation code in the KVM
- subsystem that allows privileged users in a guest domain to cause a
- denial of service (crash) of the host system.
+ Marcelo Tosatti fixed an issue in the PIT emulation code in the
+ KVM subsystem that allows privileged users in a guest domain to
+ cause a denial of service (crash) of the host system.
CVE-2010-0410
- Sebastian Krahmer discovered an issue in the netlink connector subsystem
- that permits local users to allocate large amounts of system memory
- resulting in a denial of service (out of memory).
+ Sebastian Krahmer discovered an issue in the netlink connector
+ subsystem that permits local users to allocate large amounts of
+ system memory resulting in a denial of service (out of memory).
CVE-2010-0415
More information about the kernel-sec-discuss
mailing list