Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815]
Package: heartbeat Version: 1.2.4-12 Severity: grave Tags: security patch Hi! Recently, a local DoS due to world-writable/readable shared memory permissions was found and fixed in heartbeat: Upstream fix: http://cvs.linux-ha.org/viewcvs/viewcvs.cgi/linux-ha/heartbeat/heartbeat.c?r1=1.513&r2=1.514 This has been assigned CVE-2006-3815. Please mention this number in the changelog when you fix this to ease tracking. Thank you! Martin -- Martin Pitthttp://www.piware.de Ubuntu Developer http://www.ubuntu.com Debian Developer http://www.debian.org In a world without walls and fences, who needs Windows and Gates? signature.asc Description: Digital signature
Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815]
On Wed, Jul 26, 2006 at 11:18:57AM +0200, Martin Pitt wrote: > Package: heartbeat > Version: 1.2.4-12 > Severity: grave > Tags: security patch > > Hi! > > Recently, a local DoS due to world-writable/readable shared memory > permissions was found and fixed in heartbeat: > > Upstream fix: > > > http://cvs.linux-ha.org/viewcvs/viewcvs.cgi/linux-ha/heartbeat/heartbeat.c?r1=1.513&r2=1.514 > > This has been assigned CVE-2006-3815. Please mention this number in > the changelog when you fix this to ease tracking. Thanks, I will get a new relase out for this. Though it probably will not be until next week. -- Horms H: http://www.vergenet.net/~horms/ W: http://www.valinux.co.jp/en/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Processed: Re: Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815]
Processing commands for [EMAIL PROTECTED]: > clone 379904 -1 Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug 379904 cloned as bug 380289. > reassign -1 heartbeat-2 Bug#380289: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug reassigned from package `heartbeat' to `heartbeat-2'. > retitle -1 heartbeat-2: Local DoS due to world-writable shared memory > [CVE-2006-3815] Bug#380289: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Changed Bug title. > found -1 2.0.5-8 Bug#380289: heartbeat-2: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 2.0.5-8. > found -1 2.0.6-1 Bug#380289: heartbeat-2: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 2.0.6-1. > found -1 2.0.6-0bpo1 Bug#380289: heartbeat-2: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 2.0.6-0bpo1. > found 379904 1.2.3-9sarge5 Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 1.2.3-9sarge5. > found 379904 1.2.3-9sarge4 Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 1.2.3-9sarge4. > found 379904 1.2.4-11bpo1 Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as found in version 1.2.4-11bpo1. > End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Processed: Re: Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815]
Processing commands for [EMAIL PROTECTED]: > notfound 379904 1.2.3-9sarge5 Bug#379904: heartbeat: Local DoS due to world-writable shared memory [CVE-2006-3815] Bug marked as not found in version 1.2.3-9sarge5. > End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
