[kernel] r5019 - patch-tracking
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Thu Dec 15 11:47:26 UTC 2005
Author: jmm-guest
Date: Thu Dec 15 11:47:25 2005
New Revision: 5019
Added:
patch-tracking/CVE-2004-2302
Log:
CVE-2004-2302
Added: patch-tracking/CVE-2004-2302
==============================================================================
--- (empty file)
+++ patch-tracking/CVE-2004-2302 Thu Dec 15 11:47:25 2005
@@ -0,0 +1,23 @@
+Candidate: CVE-2004-2302
+References:
+ http://linux.bkbits.net:8080/linux-2.6/cset%404186a4deVoR88JjTwMa3ZnIp-_YJsA
+ http://kernel.org/pub/linux/kernel/people/akpm/patches/2.6/2.6.10-rc1/2.6.10-rc1-mm1/broken-out/fix-race-in-sysfs_read_file-and-sysfs_write_file.patch
+ http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:218
+ http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219
+ http://www.novell.com/linux/security/advisories/2005_44_kernel.html
+Description:
+ Race condition in the sysfs_read_file and sysfs_write_file functions in Linux
+ kernel before 2.6.10 allows local users to read kernel memory and cause a
+ denial of service (crash) via large offsets in sysfs files.
+Notes:
+Bugs:
+upstream: released (2.6.10)
+2.6.14: N/A
+2.6.8-sarge-security: released (2.6.8-16sarge1)
+2.4.27-sarge-security:
+2.4.19-woody-security:
+2.4.18-woody-security:
+2.4.17-woody-security:
+2.4.16-woody-security:
+2.4.17-woody-security-hppa:
+2.4.17-woody-security-ia64:
More information about the Kernel-svn-changes
mailing list