[kernel-sec-discuss] r3139 - active
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Nov 8 05:57:59 UTC 2013
Author: jmm
Date: 2013-11-08 05:57:37 +0000 (Fri, 08 Nov 2013)
New Revision: 3139
Added:
active/CVE-2013-4270
Log:
new info leak
Added: active/CVE-2013-4270
===================================================================
--- active/CVE-2013-4270 (rev 0)
+++ active/CVE-2013-4270 2013-11-08 05:57:37 UTC (rev 3139)
@@ -0,0 +1,11 @@
+Description: open O_WRONLY succeeds on some root owned files in /proc for process running with unprivileged EUID
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4270
+Notes:
+Bugs:
+upstream: released (3.12) [2433c8f094a008895e66f25bd1773cdb01c91d01]
+2.6.32-upstream-stable: N/A "Introduced in 3.8 with cff109768b2d9c03095848f4cd4b0754117262aa"
+sid: needed
+3.2-wheezy-security: N/A "Introduced in 3.8 with cff109768b2d9c03095848f4cd4b0754117262aa"
+2.6.32-squeeze-security: N/A "Introduced in 3.8 with cff109768b2d9c03095848f4cd4b0754117262aa"
+3.2-upstream-stable: N/A "Introduced in 3.8 with cff109768b2d9c03095848f4cd4b0754117262aa"
More information about the kernel-sec-discuss
mailing list