oss-sec mailing list archives
Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range
From: Marcus Meissner <meissner () suse de>
Date: Wed, 17 Dec 2008 16:32:07 +0100
On Tue, Dec 16, 2008 at 09:24:32PM -0500, Steven M. Christey wrote:
On Wed, 17 Dec 2008, Eugene Teo wrote:Hmm, there's a comment in the ac_ioctl() that the device for this is only accessible by root, so if out of range may not matter. Hmm. So, maybe, maybe not.Our current approach would be, probably not.
I guess the accessibility very much depends on the /dev/ac* device permissions here. For a multiport serial card I guess root/tty only. Ciao, Marcus
Current thread:
- CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 09)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Marcus Meissner (Dec 17)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 17)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)