oss-sec mailing list archives
Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range
From: "Steven M. Christey" <coley () linus mitre org>
Date: Wed, 17 Dec 2008 10:56:49 -0500 (EST)
On Wed, 17 Dec 2008, Marcus Meissner wrote:
I guess the accessibility very much depends on the /dev/ac* device permissions here. For a multiport serial card I guess root/tty only.
If there are any realistic situations under which /dev/ac* might have less stringent permissions, then that's good enough for inclusion - either the default configuration, a common configuration, recommended vendor practice, etc. - Steve
Current thread:
- CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 09)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Marcus Meissner (Dec 17)
- Re: Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 17)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Eugene Teo (Dec 16)
- Re: CVE request: kernel: applicom: fix an unchecked user ioctl range Steven M. Christey (Dec 16)