retire CVE-2010-0299

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@1738 e094ebfe-e918-0410-adfb-c712417f3574
author: dann frazier <dannf@debian.org> 2010-02-15 19:21:26 +0000
committer: dann frazier <dannf@debian.org> 2010-02-15 19:21:26 +0000
commit: 0150c0b8acd1b2e485f3c13050d1b50eeae32604 (patch)
tree: ce2c33a4270856e07df7b42ca73be6909c59b7b5 /retired/CVE-2010-0299
parent: 805039e95a610cc1fa043e7929238ddd75dec258 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2010-0299 b/retired/CVE-2010-0299
new file mode 100644
index 00000000..d534b856
--- /dev/null
+++ b/retired/CVE-2010-0299
@@ -0,0 +1,15 @@
+Candidate: CVE-2010-0299
+Description:
+ devtmpfs root directory has permissions 1777, which can lead to priviledge escalation
+References:
+ http://lwn.net/Articles/373524/
+Notes:
+ dannf> introduced in 2.6.32-rc1
+Bugs:
+upstream: released (2.6.33-rc1, 2.6.32.7)
+2.6.32-upstream-stable: released (2.6.32.7)
+linux-2.6: released (2.6.32-6) [bugfix/all/stable/2.6.32.7]
+2.6.18-etch-security: N/A
+2.6.24-etch-security: N/A
+2.6.26-lenny-security: N/A
+2.6.32-squeeze-security: released (2.6.32-6) [bugfix/all/stable/2.6.32.7]
author	dann frazier <dannf@debian.org>	2010-02-15 19:21:26 +0000
committer	dann frazier <dannf@debian.org>	2010-02-15 19:21:26 +0000
commit	0150c0b8acd1b2e485f3c13050d1b50eeae32604 (patch)
tree	ce2c33a4270856e07df7b42ca73be6909c59b7b5 /retired/CVE-2010-0299
parent	805039e95a610cc1fa043e7929238ddd75dec258 (diff)