| 1 |
Candidate: CVE-2006-0096
|
| 2 |
References:
|
| 3 |
http://www.kernel.org/git/?p=linux/kernel/git/tglx/history.git;a=commitdiff;h=0f1d4813a4a65296e1131f320a60741732bc068f
|
| 4 |
http://linux.bkbits.net:8080/linux-2.4/cset@1.1448.91.23?nav=index.html|src/|src/drivers|src/drivers/net|src/drivers/net/wan|related/drivers/net/wan/sdla.c
|
| 5 |
Description:
|
| 6 |
Notes:
|
| 7 |
jmm> This was accidentally released as a fix for CVE-2004-2607 in 2.4.27-8:
|
| 8 |
jmm>
|
| 9 |
jmm> diff -Nru a/drivers/net/wan/sdla.c b/drivers/net/wan/sdla.c
|
| 10 |
jmm> --- a/drivers/net/wan/sdla.c 2005-01-13 08:41:42 -08:00
|
| 11 |
jmm> +++ b/drivers/net/wan/sdla.c 2005-01-13 08:41:42 -08:00
|
| 12 |
jmm> @@ -1300,6 +1300,8 @@
|
| 13 |
jmm>
|
| 14 |
jmm> case SDLA_WRITEMEM:
|
| 15 |
jmm> case SDLA_READMEM:
|
| 16 |
jmm> + if(!capable(CAP_SYS_RAWIO))
|
| 17 |
jmm> + return -EPERM;
|
| 18 |
jmm> return(sdla_xfer(dev, (struct sdla_mem *)ifr->ifr_data, cmd == SDLA_READMEM));
|
| 19 |
jmm>
|
| 20 |
jmm> case SDLA_START:
|
| 21 |
horms> I only see reference to CVE-2004-2607 in patch-tracking,
|
| 22 |
horms> not in the changelog for 2.4.27-8, so I don't think the first line
|
| 23 |
horms> of the statement above is correct
|
| 24 |
Bugs:
|
| 25 |
upstream: released (2.6.11), fixed (2.4.29)
|
| 26 |
linux-2.6: N/A
|
| 27 |
2.6.8-sarge-security: released (2.6.8-16sarge2) [net-sdla-coverty.dpatch]
|
| 28 |
2.4.27-sarge-security: released (2.4.27-8) [129_net_sdla_coverty.diff]
|
| 29 |
2.4.19-woody-security:
|
| 30 |
2.4.18-woody-security:
|
| 31 |
2.4.17-woody-security:
|
| 32 |
2.4.16-woody-security:
|
| 33 |
2.4.17-woody-security-hppa:
|
| 34 |
2.4.17-woody-security-ia64:
|
Parent Directory
| 
Revision Log