On Wed, Aug 27, 2014 at 12:09:41PM +0200, Paolo Bonzini wrote: > Il 27/08/2014 11:34, Luis Henriques ha scritto: > > > The SG_IO ioctl's command whitelist is designed for MMC devices (roughly, > > > "play/burn CDs without requiring root") but some opcodes overlap across > > > SCSI > > > device classes and have different meanings for different classes. > > > > > > To fix this, use different bitmaps for the various device classes. > > > This is CVE-2012-4542. > > > > Sorry for bringing this old issue again, but I was wondering what > > happen to this fix. > > Nothing; everybody lost interest in it.
Thanks a lot for the update, Paolo. This is what I was actually expecting, although it's somewhat surprising, taking into account this is a security issue :-) Cheers, -- Luís -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/