blob: d975e94a9412ed8495f40784576a4f30f2d12a21 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
|
Candidate: CVE-2005-4351
References:
http://www.redteam-pentesting.de/advisories/rt-sa-2005-15.txt
Description:
The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8,
DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass
immutable settings for files by mounting another filesystem that masks the
immutable files while the system is running.
Notes:
jmm> This affects the LSM module for BSD secure levels, not included in 2.4 and
jmm> 2.6.8
jmm> module removed in 2.6.19
Bugs:
upstream: released (2.6.19)
linux-2.6: 2.6.18-3
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.4.19-woody-security: N/A
2.4.18-woody-security: N/A
2.4.17-woody-security: N/A
2.4.16-woody-security: N/A
2.4.17-woody-security-hppa: N/A
2.4.17-woody-security-ia64: N/A
|