(Affects RHEL2.1, but 2.4 needs a slightly altered patch) +++ This bug was initially created as a clone of Bug #152177 +++ A flaw was discovered by Ilja van Sprundel in the bluetooth driver affecting 2.4 and 2.6. On system where bluetooth modules are loaded, a local user could use this flaw to gain root privileges.
A fix for this problem has been committed to the RHEL2.1 patch pool in kernel version 2.4.18-e.56
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-284.html