|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: kernel: dm-crypt information leak | ||
|---|---|---|---|
| Product: | [openSUSE] SUSE LINUX 10.0 | Reporter: | Marcus Meissner <meissner> |
| Component: | Kernel | Assignee: | Security Team bot <security-team> |
| Status: | RESOLVED FIXED | QA Contact: | E-mail List <qa-bugs> |
| Severity: | Minor | ||
| Priority: | P5 - None | CC: | nfbrown, security-team |
| Version: | Final | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| Whiteboard: | affected:sles9sp4,sles9sp3, 9.2,9.3,10.0 applied:sles9sp4,sles9sp3,9 .2,9.3.10.0 released: - CVE-2006-0095: CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:P/I:N/A:N ) | ||
| Found By: | Other | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Attachments: | The patch from 9.3 | ||
|
Description
Marcus Meissner
2006-01-10 09:44:18 UTC
The current sles10 CVS has this fixed as it based on -git9. I have backported into sles9-sp4, fixing it on the way. I've reported the problem with the patch to Authors and linux-kernel. Maybe I'll add the fix to HEAD once it gets to mainline.... this likely applies to the other kernel branches too, right? Created attachment 70077 [details]
The patch from 9.3
Here is the patch from 9.3 which should replace the one in SLES9-SP3
Oops.... wrong bug... now how did I do that.... Sorry, forget comment #4 and comment #5. can you/someone else apply the patch to the other active branches? cvs tags are listed in: http://w3d.suse.de/Dev/Labs/Pubs/Kernel_Building.html Ok, I've applied it and updated the status whiteboard. NeilBrown thanks neil! marking fixed, since all done exccept pushing out via update. CVE-2006-0095: CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:P/I:N/A:N) |