Launchpad.net

CVE 2008-0001

VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.

Related bugs and status

CVE-2008-0001 (Candidate) is related to these bugs:

Bug #94186: 3c59x - 10/100 NIC fails to link to gigabit switch

		In	Importance	Status
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux-source-2.6.22 (Ubuntu)	Low	Fix Released
94186	3c59x - 10/100 NIC fails to link to gigabit switch	linux (Ubuntu)	Undecided	Fix Released

Bug #125250: Don't recognise USB Pendrive -> sr0: disc change detected.

		In	Importance	Status
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Hardy)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Won't Fix
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Intrepid)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Intrepid)	Undecided	Invalid
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux (Ubuntu Jaunty)	Medium	Fix Released
125250	Don't recognise USB Pendrive -> sr0: disc change detected.	linux-source-2.6.20 (Ubuntu Jaunty)	Undecided	Invalid

Bug #140784: auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config

		In	Importance	Status
140784	auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config	audit (Ubuntu)	Medium	Invalid
140784	auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config	audit (Debian)	Unknown	Fix Released
140784	auditctl: Error sending add rule data request (Invalid argument) - Enable CONFIG_AUDITSYSCALL in kernel config	linux (Ubuntu)	Medium	Fix Released

Bug #153096: [sata_sil][sata->ide-bridg] failed to set xfermode

		In	Importance	Status
153096	[sata_sil][sata->ide-bridg] failed to set xfermode	linux-source-2.6.22 (Ubuntu)	High	Fix Released
153096	[sata_sil][sata->ide-bridg] failed to set xfermode	linux (Ubuntu)	High	Fix Released
153096	[sata_sil][sata->ide-bridg] failed to set xfermode	Linux	Medium	Fix Released

Bug #159241: [Tracking Bug] PCI resource allocation warnings

		In	Importance	Status
159241	[Tracking Bug] PCI resource allocation warnings	linux-meta (Ubuntu)	Unknown	Invalid
159241	[Tracking Bug] PCI resource allocation warnings	Linux	Medium	Invalid
159241	[Tracking Bug] PCI resource allocation warnings	linux (Ubuntu)	Medium	Fix Released
159241	[Tracking Bug] PCI resource allocation warnings	linux (Ubuntu Hardy)	Medium	Fix Released
159241	[Tracking Bug] PCI resource allocation warnings	linux-meta (Ubuntu Hardy)	Unknown	Invalid

Bug #164231: NFS regression causes subsequent mounts from same superblock to silently use previous mount options

		In	Importance	Status
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.22 (Ubuntu)	High	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.22 (Ubuntu Hardy)	High	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.22 (Ubuntu Gutsy)	High	Fix Released
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.22 (Ubuntu Feisty)	Undecided	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux (Ubuntu)	High	Fix Released
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux (Ubuntu Feisty)	High	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux (Ubuntu Gutsy)	High	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux (Ubuntu Hardy)	High	Fix Released
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.20 (Ubuntu)	Undecided	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.20 (Ubuntu Feisty)	High	Fix Released
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.20 (Ubuntu Gutsy)	Undecided	Invalid
164231	NFS regression causes subsequent mounts from same superblock to silently use previous mount options	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Invalid

Bug #175834: spurious completions during NCQ - Lenovo R61i - FUJITSU MHW2160BH PL

Summary				In	Importance	Status
	175834	spurious completions during NCQ - Lenovo R61i - FUJITSU MHW2160BH PL		linux (Ubuntu)	Medium	Fix Released

Bug #176587: CONFIG_BSD_PROCESS_ACCT is not set in kernel 2.6.22-14-sparc64-smp

Summary				In	Importance	Status
	176587	CONFIG_BSD_PROCESS_ACCT is not set in kernel 2.6.22-14-sparc64-smp		linux-source-2.6.22 (Ubuntu)	Undecided	Won't Fix
	176587	CONFIG_BSD_PROCESS_ACCT is not set in kernel 2.6.22-14-sparc64-smp		linux (Ubuntu)	Medium	Fix Released

Bug #182434: cpuset support no longer enabled in kernel

Summary				In	Importance	Status
	182434	cpuset support no longer enabled in kernel		linux (Ubuntu)	Medium	Fix Released

Bug #182716: bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.

		In	Importance	Status
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Ubuntu)	Medium	Fix Released
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Ubuntu	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	Linux	Undecided	Invalid
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Mandriva)	Undecided	New
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux-source-2.6.22 (Ubuntu)	Undecided	Won't Fix
182716	bcm4306, bcm4309, bcm4311, bcm4312 with b43 : Authentication with AP doesn't work.	linux (Baltix)	Undecided	New

Bug #185649: 7.10 support of new AMD PowerNow! (family 0x11 and beyond)

Summary				In	Importance	Status
	185649	7.10 support of new AMD PowerNow! (family 0x11 and beyond)		linux-source-2.6.22 (Ubuntu)	Medium	Fix Released

Bug #187275: [linux-source] several local vulnerabilities

Summary				In	Importance	Status
	187275	[linux-source] several local vulnerabilities		linux (Ubuntu)	Medium	Fix Released

Bug #191831: bash test -w (writeable) always SUCCEED on EncFS + linux-2.6.24.X ?

Summary				In	Importance	Status
	191831	bash test -w (writeable) always SUCCEED on EncFS + linux-2.6.24.X ?		EncFS	Undecided	Invalid
	191831	bash test -w (writeable) always SUCCEED on EncFS + linux-2.6.24.X ?		linux (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-0001

Related bugs and status

Related bugs

References