[kernel-sec-discuss] r2920 - active

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Apr 30 13:51:24 UTC 2013


Author: jmm
Date: 2013-04-30 13:51:02 +0000 (Tue, 30 Apr 2013)
New Revision: 2920

Added:
   active/CVE-2013-1956
   active/CVE-2013-1957
   active/CVE-2013-1958
Log:
more userns issues


Added: active/CVE-2013-1956
===================================================================
--- active/CVE-2013-1956	                        (rev 0)
+++ active/CVE-2013-1956	2013-04-30 13:51:02 UTC (rev 2920)
@@ -0,0 +1,9 @@
+Description: userns: Don't allow creation if the user is chrooted
+References:
+Notes:
+Bugs:
+upstream: released (3.9) [3151527ee007b73a0ebd296010f1c0454a919c7d]
+2.6.32-upstream-stable:
+sid:
+2.6.32-squeeze-security:
+3.2-upstream-stable:

Added: active/CVE-2013-1957
===================================================================
--- active/CVE-2013-1957	                        (rev 0)
+++ active/CVE-2013-1957	2013-04-30 13:51:02 UTC (rev 2920)
@@ -0,0 +1,9 @@
+Description: vfs: Carefully propogate mounts across user namespaces
+References:
+Notes:
+Bugs:
+upstream: released (3.9) [90563b198e4c6674c63672fae1923da467215f45, 132c94e31b8bca8ea921f9f96a57d684fa4ae0a9]
+2.6.32-upstream-stable:
+sid:
+2.6.32-squeeze-security:
+3.2-upstream-stable:

Added: active/CVE-2013-1958
===================================================================
--- active/CVE-2013-1958	                        (rev 0)
+++ active/CVE-2013-1958	2013-04-30 13:51:02 UTC (rev 2920)
@@ -0,0 +1,9 @@
+Description: scm: Require CAP_SYS_ADMIN over the current pidns to spoof pids
+References:
+Notes:
+Bugs:
+upstream: released (3.9) [92f28d973cce45ef5823209aab3138eb45d8b349]
+2.6.32-upstream-stable:
+sid:
+2.6.32-squeeze-security:
+3.2-upstream-stable:




More information about the kernel-sec-discuss mailing list