Bug 231069
Summary: | CVE-2007-1217 Overflow in CAPI subsystem | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 3 | Reporter: | Marcel Holtmann <holtmann> | ||||||||
Component: | kernel | Assignee: | Don Howard <dhoward> | ||||||||
Status: | CLOSED ERRATA | QA Contact: | Martin Jenner <mjenner> | ||||||||
Severity: | medium | Docs Contact: | |||||||||
Priority: | medium | ||||||||||
Version: | 3.0 | CC: | anton, jlieskov, jmarchan, lwang, petrides, security-response-team | ||||||||
Target Milestone: | --- | Keywords: | Security | ||||||||
Target Release: | --- | ||||||||||
Hardware: | All | ||||||||||
OS: | Linux | ||||||||||
Whiteboard: | impact=moderate,source=vendorsec,reported=20070213,public=20070126 | ||||||||||
Fixed In Version: | RHSA-2007-0671 | Doc Type: | Bug Fix | ||||||||
Doc Text: | Story Points: | --- | |||||||||
Clone Of: | Environment: | ||||||||||
Last Closed: | 2007-08-16 09:34:49 UTC | Type: | --- | ||||||||
Regression: | --- | Mount Type: | --- | ||||||||
Documentation: | --- | CRM: | |||||||||
Verified Versions: | Category: | --- | |||||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||||
Embargoed: | |||||||||||
Attachments: |
|
Description
Marcel Holtmann
2007-03-05 22:16:38 UTC
Marcel, the exploit in bug 230563 comment #1 requires access to /dev/capi20, which has permission 600 (and thus needs super-user privileges). If that is our only exposure, please close this as NOTABUG. Created attachment 150897 [details]
patch for this BZ
Created attachment 150899 [details]
CVS repository patch, adds CONFIG_CAPI_TRACE option
Compilation is successful but not tested, because i do not have ISDN card available. Patch still contains errors, please do not test it now. Created attachment 151273 [details]
correct patch, only compilation tested, need to test with real hardware
fixed in build 2.4.21-51.EL An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2007-0671.html *** Bug 402771 has been marked as a duplicate of this bug. *** |