blob: f2b7e54707d91addf901baa87d2d022669b182e7 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
Candidate: CVE-2005-3179
References:
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3179
Reference: CONFIRM:http://www.kernel.org/hg/linux-2.6/?cmd=changeset;node=d7067d7d1f92cba14963a430cfbd53098cbbc8fd
Reference: CONFIRM:http://bugs.gentoo.org/show_bug.cgi?id=107893
Description:
drm.c in Linux kernel 2.6.13 and earlier creates a debug file in sysfs
with world-readable and world-writable permissions, which allows local
users to enable DRM debugging and obtain sensitive information.
Notes:
(from Horms)
> > From: Dave Jones <davej@redhat.com>
> >
> > Please consider for next 2.6.13, it is a minor security issue allowing
> > users to turn on drm debugging when they shouldn't...
upstream: released (2.6.13.4)
linux-2.6: released (2.6.13+2.6.14-rc4-0experimental.1)
2.6.8-sarge-security: N/A
2.4.27-sid/sarge: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security:
2.4.18-woody-security:
2.4.17-woody-security:
2.4.16-woody-security:
2.4.17-woody-security-hppa:
2.4.17-woody-security-ia64:
2.4.18-woody-security-hppa:
|