(Affects RHEL3, but 2.4 needs a slightly altered patch) +++ This bug was initially created as a clone of Bug #152177 +++ A flaw was discovered by Ilja van Sprundel in the bluetooth driver affecting 2.4 and 2.6. On system where bluetooth modules are loaded, a local user could use this flaw to gain root privileges.
Created attachment 112458 [details] jwltest-bluetooth-param-check.patch Backport of patch to RHEL3...
Test kernels with the above patch are available here: http://people.redhat.com/linville/kernels/rhel3/ Although the patch seems obvious, please give them a try and post results. Thanks!
A fix for this problem has just been committed to the RHEL3 E5 patch pool this evening (in kernel version 2.4.21-27.0.3.EL).
A fix for this problem has also been committed to the RHEL3 U5 patch pool this evening (in kernel version 2.4.21-32.EL).
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-293.html
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-294.html