Date: Wed, 14 Apr 2010 20:23:13 -0400 From: Michael Gilbert <michael.s.gilbert@...il.com> To: oss-security@...ts.openwall.com, coley@...re.org Subject: Re: Couple of kernel issues On Wed, 14 Apr 2010 11:20:00 +0800 Eugene Teo wrote: > 2) tty: release_one_tty() forgets to put pids > https://bugzilla.redhat.com/show_bug.cgi?id=582076 > http://git.kernel.org/linus/6da8d866d0d39e9509ff826660f6a86a6757c966 > Not sure this issue can be triggered by a non-privileged user. this one should get a CVE id i think. looking at only two data points (2.6.26 and 2.6.32), i've found the vulnerable code present in both. if i'm not mistaken, redhat has had supported releases in that range. mike
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ