Contents of /retired/CVE-2006-1856

Candidate: CVE-2006-1856
References: 
 Certain modifications to the Linux kernel 2.6.16 and earlier do not
 add the appropriate Linux Security Modules (LSM) file_permission hooks 
 to the (1) readv and (2) writev functions, which might allow attackers
 to bypass intended access restrictions.
Description:
 http://lists.jammed.com/linux-security-module/2005/09/0019.html
 http://www.ussg.iu.edu/hypermail/linux/kernel/0604.3/0777.html
 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191524
Notes:
Bugs: 
upstream: released (2.6.17)
linux-2.6: released (2.6.17-1)
2.6.8-sarge-security: released (2.6.8-16sarge5) [readv-writev-missing-lsm-check.dpatch, readv-writev-missing-lsm-check-compat.dpatch]
2.4.27-sarge-security: N/A
1	Candidate: CVE-2006-1856
2	References:
3	Certain modifications to the Linux kernel 2.6.16 and earlier do not
4	add the appropriate Linux Security Modules (LSM) file_permission hooks
5	to the (1) readv and (2) writev functions, which might allow attackers
6	to bypass intended access restrictions.
7	Description:
8	http://lists.jammed.com/linux-security-module/2005/09/0019.html
9	http://www.ussg.iu.edu/hypermail/linux/kernel/0604.3/0777.html
10	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191524
11	Notes:
12	Bugs:
13	upstream: released (2.6.17)
14	linux-2.6: released (2.6.17-1)
15	2.6.8-sarge-security: released (2.6.8-16sarge5) [readv-writev-missing-lsm-check.dpatch, readv-writev-missing-lsm-check-compat.dpatch]
16	2.4.27-sarge-security: N/A