557180 – (CVE-2009-3939) VUL-1: CVE-2009-3939: kernel: poll_mode_io file for the megaraid_sas driver has world-writable permissions

Bug 557180 (CVE-2009-3939) - VUL-1: CVE-2009-3939: kernel: poll_mode_io file for the megaraid_sas driver has world-writable permissions

Summary: VUL-1: CVE-2009-3939: kernel: poll_mode_io file for the megaraid_sas driver h...

Status:	RESOLVED FIXED

Alias:	CVE-2009-3939

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	General (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P5 - None Severity: Major
Target Milestone:	---
Deadline:	2009-12-04
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:
Whiteboard:	. maint:released:sle10-sp2:29650 main...
Keywords:	DSLA_REQUIRED, DSLA_SOLUTION_PROVIDED

Depends on:
Blocks:

Clone This Bug

Reported:	2009-11-20 11:26 UTC by Thomas Biege
Modified:	2018-10-10 08:28 UTC (History)
CC List:	5 users (show)

See Also:
Found By:	Development
Services Priority:	800
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Biege 2009-11-20 11:26:34 UTC

Hi.
There is a security bug in 'kernel'.

This bug is public.

There is no coordinated release date (CRD) set.

CVE number: CVE-2009-3939
CVE description: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3939
CVSS v2 Base Score: 6.6 (MEDIUM) (AV:L/AC:L/Au:N/C:N/I:C/A:C)


Original posting:


 world-writable permissions

CVE-ID: CVE-2009-3939
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3939


The poll_mode_io file for the megaraid_sas driver in the Linux kernel
2.6.31.6 and earlier has world-writable permissions, which allows
local users to change the I/O mode of the driver by modifying this
file.


Current Votes:
None (candidate not yet proposed)

Comment 1 Marcus Meissner 2009-11-20 13:29:44 UTC

dup

*** This bug has been marked as a duplicate of bug 555173 ***

Comment 2 Marcus Meissner 2009-11-20 13:31:58 UTC

actualyl not, poll-mode_io is not fixed in sles10sp2

Comment 3 Jeff Mahoney 2009-11-30 22:07:30 UTC

Committed to master, 11.2, SLE11, 11.0, SLES10SP3, and SLES10SP2.

Comment 4 Swamp Workflow Management 2009-12-01 17:15:32 UTC

The SWAMPID for this issue is 29204.
Please submit the patch and patchinfo file using this ID.
(https://swamp.suse.de/webswamp/wf/29204)

Comment 5 Marcus Meissner 2009-12-14 15:19:18 UTC

A SLES 10 SP3 kernel update was just released that mentions / fixes this bug.
The kernel version in the update is 2.6.16.60-0.58.1.

Comment 6 Marcus Meissner 2009-12-18 12:32:53 UTC

is in where needed

Comment 7 Marcus Meissner 2009-12-22 17:04:15 UTC

A SLES 10 SP2 kernel update was just released that mentions / fixes this bug.
The kernel version in the update is 2.6.16.60-0.42.8.

Comment 8 Swamp Workflow Management 2009-12-22 23:09:21 UTC

Update released for: kernel-debug, kernel-debug-debuginfo, kernel-default, kernel-default-debuginfo, kernel-kdump, kernel-kdump-debuginfo, kernel-smp, kernel-smp-debuginfo, kernel-source, kernel-source-debuginfo, kernel-syms, kernel-xen, kernel-xen-debuginfo
Products:
SLE-DEBUGINFO 10-SP2 (x86_64)
SLE-DESKTOP 10-SP2 (x86_64)
SLE-SAP-AIO 10-SP2 (x86_64)
SLE-SDK 10-SP2 (x86_64)
SLE-SERVER 10-SP2 (x86_64)

Comment 9 Swamp Workflow Management 2010-01-04 10:53:12 UTC

Update released for: kernel-debug, kernel-debug-base, kernel-debug-base-debuginfo, kernel-debug-debuginfo, kernel-debug-debugsource, kernel-debug-devel, kernel-debug-devel-debuginfo, kernel-default, kernel-default-base, kernel-default-base-debuginfo, kernel-default-debuginfo, kernel-default-debugsource, kernel-default-devel, kernel-default-devel-debuginfo, kernel-desktop, kernel-desktop-base, kernel-desktop-base-debuginfo, kernel-desktop-debuginfo, kernel-desktop-debugsource, kernel-desktop-devel, kernel-desktop-devel-debuginfo, kernel-pae, kernel-pae-base, kernel-pae-base-debuginfo, kernel-pae-debuginfo, kernel-pae-debugsource, kernel-pae-devel, kernel-pae-devel-debuginfo, kernel-source, kernel-source-vanilla, kernel-syms, kernel-trace, kernel-trace-base, kernel-trace-base-debuginfo, kernel-trace-debuginfo, kernel-trace-debugsource, kernel-trace-devel, kernel-trace-devel-debuginfo, kernel-vanilla, kernel-vanilla-base, kernel-vanilla-base-debuginfo, kernel-vanilla-debuginfo, kernel-vanilla-debugsource, kernel-vanilla-devel, kernel-vanilla-devel-debuginfo, kernel-xen, kernel-xen-base, kernel-xen-base-debuginfo, kernel-xen-debuginfo, kernel-xen-debugsource, kernel-xen-devel, kernel-xen-devel-debuginfo, preload-kmp-default, preload-kmp-desktop
Products:
openSUSE 11.2 (debug, i586, x86_64)

Comment 10 Swamp Workflow Management 2010-01-14 16:02:45 UTC

Update released for: kernel-debug, kernel-debug-base, kernel-debug-debuginfo, kernel-debug-debugsource, kernel-debug-extra, kernel-default, kernel-default-base, kernel-default-debuginfo, kernel-default-debugsource, kernel-default-extra, kernel-docs, kernel-kdump, kernel-kdump-debuginfo, kernel-kdump-debugsource, kernel-pae, kernel-pae-base, kernel-pae-debuginfo, kernel-pae-debugsource, kernel-pae-extra, kernel-ppc64, kernel-ppc64-base, kernel-ppc64-debuginfo, kernel-ppc64-debugsource, kernel-ppc64-extra, kernel-ps3, kernel-ps3-debuginfo, kernel-ps3-debugsource, kernel-source, kernel-source-debuginfo, kernel-syms, kernel-trace, kernel-trace-base, kernel-trace-debuginfo, kernel-trace-debugsource, kernel-trace-extra, kernel-vanilla, kernel-vanilla-debuginfo, kernel-vanilla-debugsource, kernel-xen, kernel-xen-base, kernel-xen-debuginfo, kernel-xen-debugsource, kernel-xen-extra
Products:
openSUSE 11.1 (debug, i586, ppc, x86_64)

Comment 11 Swamp Workflow Management 2010-01-14 23:09:44 UTC

Update released for: cluster-network-kmp-default, cluster-network-kmp-pae, cluster-network-kmp-xen, ext4dev-kmp-default, ext4dev-kmp-pae, ext4dev-kmp-vmi, ext4dev-kmp-xen, kernel-default, kernel-default-base, kernel-default-debuginfo, kernel-default-debugsource, kernel-default-extra, kernel-pae, kernel-pae-base, kernel-pae-debuginfo, kernel-pae-debugsource, kernel-pae-extra, kernel-source, kernel-source-debuginfo, kernel-syms, kernel-vmi, kernel-vmi-base, kernel-vmi-debuginfo, kernel-vmi-debugsource, kernel-vmi-extra, kernel-xen, kernel-xen-base, kernel-xen-debuginfo, kernel-xen-debugsource, kernel-xen-extra
Products:
SLE-DEBUGINFO 11 (i386)
SLE-DESKTOP 11 (i386)
SLE-HAE 11 (i386)
SLE-SERVER 11 (i386)

Comment 12 Marcus Meissner 2010-01-15 13:45:17 UTC

A kernel update for SUSE Linux Enterprise 11 and openSUSE 11.1 was just released, with version 2.6.27.42-0.1.1, that mentions/fixes this bug.

Comment 13 Swamp Workflow Management 2010-01-15 23:09:41 UTC

Update released for: cluster-network-kmp-default, cluster-network-kmp-xen, ext4dev-kmp-default, ext4dev-kmp-xen, kernel-default, kernel-default-base, kernel-default-debuginfo, kernel-default-debugsource, kernel-default-extra, kernel-source, kernel-source-debuginfo, kernel-syms, kernel-xen, kernel-xen-base, kernel-xen-debuginfo, kernel-xen-debugsource, kernel-xen-extra
Products:
SLE-DEBUGINFO 11 (x86_64)
SLE-DESKTOP 11 (x86_64)
SLE-HAE 11 (x86_64)
SLE-SERVER 11 (x86_64)

Comment 16 Swamp Workflow Management 2010-02-08 13:37:30 UTC

Update released for: kernel-debug, kernel-debug-base, kernel-debug-base-debuginfo, kernel-debug-debuginfo, kernel-debug-debugsource, kernel-debug-devel, kernel-debug-devel-debuginfo, kernel-default, kernel-default-base, kernel-default-base-debuginfo, kernel-default-debuginfo, kernel-default-debugsource, kernel-default-devel, kernel-default-devel-debuginfo, kernel-desktop, kernel-desktop-base, kernel-desktop-base-debuginfo, kernel-desktop-debuginfo, kernel-desktop-debugsource, kernel-desktop-devel, kernel-desktop-devel-debuginfo, kernel-pae, kernel-pae-base, kernel-pae-base-debuginfo, kernel-pae-debuginfo, kernel-pae-debugsource, kernel-pae-devel, kernel-pae-devel-debuginfo, kernel-source, kernel-source-vanilla, kernel-syms, kernel-trace, kernel-trace-base, kernel-trace-base-debuginfo, kernel-trace-debuginfo, kernel-trace-debugsource, kernel-trace-devel, kernel-trace-devel-debuginfo, kernel-vanilla, kernel-vanilla-base, kernel-vanilla-base-debuginfo, kernel-vanilla-debuginfo, kernel-vanilla-debugsource, kernel-vanilla-devel, kernel-vanilla-devel-debuginfo, kernel-xen, kernel-xen-base, kernel-xen-base-debuginfo, kernel-xen-debuginfo, kernel-xen-debugsource, kernel-xen-devel, kernel-xen-devel-debuginfo, preload-kmp-default, preload-kmp-desktop
Products:
openSUSE 11.2 (debug, i586, x86_64)

Comment 24 Swamp Workflow Management 2010-02-12 10:13:28 UTC

Update released for: kernel-default-extra, kernel-pae-extra, kernel-vmi-extra, kernel-xen-extra
Products:
SLE-SERVER 11-EXTRA (i386)

Comment 25 Swamp Workflow Management 2010-02-15 12:13:40 UTC

Update released for: acerhk-kmp-debug, acx-kmp-debug, appleir-kmp-debug, at76_usb-kmp-debug, atl2-kmp-debug, aufs-kmp-debug, dazuko-kmp-debug, drbd-kmp-debug, gspcav-kmp-debug, iscsitarget-kmp-debug, ivtv-kmp-debug, kernel-debug, kernel-default, kernel-docs, kernel-kdump, kernel-pae, kernel-ppc64, kernel-ps3, kernel-source, kernel-syms, kernel-vanilla, kernel-xen, kqemu-kmp-debug, nouveau-kmp-debug, omnibook-kmp-debug, pcc-acpi-kmp-debug, pcfclock-kmp-debug, tpctl-kmp-debug, uvcvideo-kmp-debug, virtualbox-ose-kmp-debug, vmware-kmp-debug, wlan-ng-kmp-debug
Products:
openSUSE 11.0 (debug, i386, ppc, x86_64)