Re: [oss-security] CVE request: v86d: Failure to validate netlink message sender

From: Josh Bressers <bressers_at_nospam>
Date: Mon Feb 28 2011 - 20:53:44 GMT
To: oss-security@lists.openwall.com

Please use CVE-2011-1070

Thanks.

-- JB ----- Original Message ----- > Versions of the v86d userspace helper for the Linux uvesafb driver > before 0.1.10 did not verify that received netlink messages were sent > by the kernel, allowing unprivileged users to manipulate the video > mode and potentially other consequences. > > v86d executes video BIOS code with access to /dev/mem in response to > netlink messages, using either vm86 mode or an x86 emulator, depending > on configuration. I an unclear on whether it is possible to e.g. crash > the machine or escalate privileges by spoofing requests, or only to > mess with the video card. > > References: > http://repo.or.cz/w/v86d.git/commit/f9abfd412639286c3143e93e8ba2c9598dfba640

This message: [ Message body ]
Next message: Josh Bressers: "Re: [oss-security] cve request: eglibc memory corruption"
Previous message: Josh Bressers: "Re: [oss-security] CVE Request: PHPShop 0.8.1 <= | Cross Site Scripting Vulnerability"
In reply to: Nelson Elhage: "[oss-security] CVE request: v86d: Failure to validate netlink message sender"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]