oss-sec mailing list archives
Re: CVE request: kernel: applicom: fix an unchecked user ioctl range
From: "Steven M. Christey" <coley () linus mitre org>
Date: Tue, 16 Dec 2008 20:55:24 -0500 (EST)
On Wed, 10 Dec 2008, Eugene Teo wrote:
Steve, can you please assign a CVE name. Thanks. http://bugzilla.kernel.org/show_bug.cgi?id=11408 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a7be18d
Can the affected IOCTL be accessed by malicious attackers? If it's protected in some sense, maybe it doesn't cross privilege boundaries. Although Linus does mention an "unchecked user ioctl range." - Steve
Current thread:
- CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 09)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Marcus Meissner (Dec 17)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 17)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)