Linux kernel built with the Adaptec RAID controller support(CONFIG_SCSI_AACRAID) along with the compat mode(CONFIG_COMPAT), is vulnerable due to a missing capability check in a compat ioctl routine. This could lead to undue usage of restricted operations by users. A user/program could use this flaw to perform protected operations via compat ioctl route. Upstream fix: ------------- -> https://git.kernel.org/linus/f856567b930dfcdbc3323261bf77240ccdde01f5 Reference: ---------- -> https://secunia.com/advisories/55562/
Statement: (none)
This issue has been addressed in following products: MRG for RHEL-6 v.2 Via RHSA-2014:0100 https://rhn.redhat.com/errata/RHSA-2014-0100.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2014:0285 https://rhn.redhat.com/errata/RHSA-2014-0285.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2014:0475 https://rhn.redhat.com/errata/RHSA-2014-0475.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5.9 EUS - Server Only Via RHSA-2014:0476 https://rhn.redhat.com/errata/RHSA-2014-0476.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6.4 EUS - Server and Compute Node Only Via RHSA-2014:0634 https://rhn.redhat.com/errata/RHSA-2014-0634.html