Bug 329764 (CVE-2007-4308) - VUL-0: CVE-2007-4308: kernel: AACRAID Driver IOCTL Security Bypass
Summary: VUL-0: CVE-2007-4308: kernel: AACRAID Driver IOCTL Security Bypass
Status: RESOLVED FIXED
Alias: CVE-2007-4308
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P5 - None : Normal
Target Milestone: ---
Assignee: Hannes Reinecke
QA Contact: Security Team bot
URL:
Whiteboard: kernel:sle10sp2,sles9sp3,sl es8 affec...
Keywords: DSLA_REQUIRED, DSLA_SOLUTION_PROVIDED
Depends on:
Blocks:
 
Reported: 2007-10-01 11:48 UTC by Thomas Biege
Modified: 2018-12-13 09:50 UTC (History)
7 users (show)

See Also:
Found By: ---
Services Priority: 800
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
aacraid-fix-ioctl-permissions-check (1.63 KB, patch)
2007-10-01 13:03 UTC, Thomas Biege 		Details | Diff
aacraid-fix-ioctl-permissions-check-sles8 (1.12 KB, patch)
2007-10-01 13:03 UTC, Thomas Biege 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Biege 2007-10-01 11:48:29 UTC 
> Linux Kernel AACRAID Driver IOCTL Security Bypass
> http://secunia.com/advisories/26322/

http://lkml.org/lkml/2007/7/23/195
Comment 1 Thomas Biege 2007-10-01 11:50:22 UTC 
CVE-2007-4308
Comment 2 Thomas Biege 2007-10-01 13:03:13 UTC 
Created attachment 175726 [details]
aacraid-fix-ioctl-permissions-check
Comment 3 Thomas Biege 2007-10-01 13:03:47 UTC 
Created attachment 175727 [details]
aacraid-fix-ioctl-permissions-check-sles8
Comment 4 Thomas Biege 2007-10-01 13:20:23 UTC 
> CVE-2007-4308: no bugzilla, no permission check in aacraid ioctls
>         sles8: affected,aacraid-fix-ioctl-permissions-check-sles8
>         sles9: affected,aacraid-fix-ioctl-permissions-check
>         10.0: affected,aacraid-fix-ioctl-permissions-check
>         sles10: affected,aacraid-fix-ioctl-permissions-check
>         10.2: affected,aacraid-fix-ioctl-permissions-check
>         10.3: affected,aacraid-fix-ioctl-permissions-check
Comment 5 Lars Marowsky-Bree 2007-10-02 07:57:49 UTC 
Should this one roll into the update being prepared?
Comment 6 Thomas Biege 2007-10-02 08:17:10 UTC 
Would be nice to have but not mandatory.
Comment 7 Hannes Reinecke 2007-11-12 11:00:37 UTC 
OpenSUSE 10.3 is not affected.
Comment 8 Hannes Reinecke 2007-11-12 11:09:33 UTC 
Added to OpenSUSE 10.2 & 10.0
Comment 9 Hannes Reinecke 2007-11-12 11:20:43 UTC 
Added to SLES10 SP2, SLES10 SP1, SLES9 SP3, SLES8.

SLES9 SP4 deferred to after GA.
Comment 10 Hannes Reinecke 2007-11-12 11:21:16 UTC 
Or should I apply it to SLES9 SP4, too?
Comment 11 Jeff Mahoney 2007-11-12 16:16:52 UTC 
SP4 is frozen. We're already planning a kernel update for immediately after GM anyway, so applying it after GA won't delay deployment too much.
Comment 12 Klaus Wagner 2007-12-05 12:18:35 UTC 
Just for the record:

Patch: patches.fixes/aacraid-fix-ioctl-permissions-check
       (acting as one of several fixes for bug 326270)

included, enabled, and released in:

  SLE10 (and 10.1) kernel update 2.6.16.54-0.2.3
  dated Nov 24, 2007 & released Dec  3, 2007.


Setting Whiteboard Status for SLE10-SP1 --> released
Comment 13 Hannes Reinecke 2007-12-13 15:26:39 UTC 
Added to SLES9 SP4.
Comment 14 Thomas Biege 2009-10-13 23:58:51 UTC 
CVE-2007-4308: CVSS v2 Base Score: 1.9 (AV:L/AC:M/Au:N/C:N/I:N/A:P)