** Description changed: - kernel: sysctl: restrict write access to dmesg_restrict + The sysrq_sysctl_handler function in kernel/sysctl.c in the Linux kernel + before 2.6.39 does not require the CAP_SYS_ADMIN capability to modify + the dmesg_restrict value, which allows local users to bypass intended + access restrictions and read the kernel ring buffer by leveraging root + privileges, as demonstrated by a root user in a Linux Containers (aka + LXC) environment. Break-Fix: eaf06b241b091357e72b76863ba16e89610d31bd bfdc0b497faa82a0ba2f9dddcf109231dd519fcc
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/925987 Title: CVE-2011-4080 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/925987/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
