Git-Url: 
http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=d38145c045945a7375c068dcf0037d084bc4427c

commit d38145c045945a7375c068dcf0037d084bc4427c
Author: Miklos Vajna <vmik...@frugalware.org>
Date:   Mon Apr 12 23:37:33 2010 +0200

FSA653-kernel

diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index c7f57ae..0ac4158 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
@@ -26,6 +26,19 @@

<fsas>
<fsa>
+               <id>653</id>
+               <date>2010-04-12</date>
+               <author>Miklos Vajna</author>
+               <package>kernel</package>
+               <vulnerable>2.6.32-3</vulnerable>
+               <unaffected>2.6.32-4locris1</unaffected>
+               <bts>http://bugs.frugalware.org/task/4175</bts>
+               
<cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1146</cve>
+               <desc>A vulnerability has been reported in the Linux Kernel, 
which can be exploited by malicious, local users to bypass certain security 
restrictions.
+                       The vulnerability is caused due to the ReiserFS file 
system implementation not properly restricting access to the ".reiserfs_priv" 
directory, which can be exploited to e.g. gain root privileges by modifying 
ACLs or extended attributes.
+                       Successful exploitation requires that the ReiserFS file 
system is used.</desc>
+       </fsa>
+       <fsa>
<id>652</id>
<date>2010-04-03</date>
<author>Miklos Vajna</author>
_______________________________________________
Frugalware-git mailing list
Frugalware-git@frugalware.org
http://frugalware.org/mailman/listinfo/frugalware-git

Reply via email to