[kernel-sec-discuss] r2053 - dsa-texts
Micah Anderson
micah at alioth.debian.org
Fri Nov 26 19:47:50 UTC 2010
Author: micah
Date: 2010-11-26 19:47:49 +0000 (Fri, 26 Nov 2010)
New Revision: 2053
Modified:
dsa-texts/2.6.26-26lenny1
Log:
fix some spelling issues
Modified: dsa-texts/2.6.26-26lenny1
===================================================================
--- dsa-texts/2.6.26-26lenny1 2010-11-26 19:31:50 UTC (rev 2052)
+++ dsa-texts/2.6.26-26lenny1 2010-11-26 19:47:49 UTC (rev 2053)
@@ -25,11 +25,11 @@
CVE-2010-2963
- Kees Cook discovered an issue in v4l 32-bit compatibility layer for
- 64-bit systems that allows local users with /dev/video write permission
- to overwrite arbitrary kernel memory, potentially leading to a privelege
- escalation. On Debian systems, access to /dev/video devices is restricted
- to members of the 'video' group by default.
+ Kees Cook discovered an issue in the v4l 32-bit compatibility layer for
+ 64-bit systems that allows local users with /dev/video write permission to
+ overwrite arbitrary kernel memory, potentially leading to a privilege
+ escalation. On Debian systems, access to /dev/video devices is restricted to
+ members of the 'video' group by default.
CVE-2010-3067
@@ -127,8 +127,8 @@
CVE-2010-3874
Dan Rosenberg discovered an issue in the Control Area Network (CAN)
- subsystem on 64-bit systems. Local users maybe able to cause a denial
- of service (heap corruption).
+ subsystem on 64-bit systems. Local users may be able to cause a denial of
+ service (heap corruption).
CVE-2010-3875
@@ -184,14 +184,14 @@
CVE-2010-4080
Dan Rosenberg discovered an issue in the ALSA driver for RME Hammerfall
- DSP audio devices. Local users with access to the audio device can
+ DSP audio devices. Local users with access to the audio device can
obtain the contents of sensitive kernel memory via the
SNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl.
CVE-2010-4081
Dan Rosenberg discovered an issue in the ALSA driver for RME Hammerfall
- DSP MADI audio devices. Local users with access to the audio device can
+ DSP MADI audio devices. Local users with access to the audio device can
obtain the contents of sensitive kernel memory via the
SNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl.
@@ -203,7 +203,7 @@
CVE-2010-4164
- Dan Rosenberg discoverd an issue in the X.25 network protocol. Remote users
+ Dan Rosenberg discovered an issue in the X.25 network protocol. Remote users
can achieve a denial of service (infinite loop) by taking advantage of an
integer underflow in the facility parsing code.
More information about the kernel-sec-discuss
mailing list