Bug#301372: kernel-source-2.6.8: [CAN-2005-0839] Insecure restriction of access to the N_MOUSE line disciple for TTYs
tags 301372 +pending thanks On Fri, Mar 25, 2005 at 01:37:14PM +0100, Moritz Muehlenhoff wrote: Package: kernel-source-2.6.8 Version: 2.6.8-15 Severity: grave Tags: security Kernels before 2.6.11 do not properly restrict access to the N_MOUSE line disciple for TTYs, which allows local users to inject mouse or keyboard events into other's users sessions and possibly gain extended privileges. A fix is referenced at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0839 (I currently don't have a mouse and typing Bitkeeper web URLs is too weird :-)) Thanks, I have added this patch into svn for 2.6.8. -- Horms -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#301372: kernel-source-2.6.8: [CAN-2005-0839] Insecure restriction of access to the N_MOUSE line disciple for TTYs
Package: kernel-source-2.6.8 Version: 2.6.8-15 Severity: grave Tags: security Kernels before 2.6.11 do not properly restrict access to the N_MOUSE line disciple for TTYs, which allows local users to inject mouse or keyboard events into other's users sessions and possibly gain extended privileges. A fix is referenced at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0839 (I currently don't have a mouse and typing Bitkeeper web URLs is too weird :-)) Cheers, Moritz -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.11 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages kernel-source-2.6.8 depends on: ii binutils 2.15-5 The GNU assembler, linker and bina ii bzip2 1.0.2-5high-quality block-sorting file co ii coreutils [fileutils] 5.2.1-2The GNU core utilities -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
