binfmt_misc used user pages directly the CPIA driver had an off-by-one error in the buffer code which made it possible for users to write into kernel memory ----- dolore!!!! ----- the CPUID and MSR drivers had a problem in the module unloading code which could cause a system a crash if they were set to automatically load and unload ----- tanto dolore ----- there was a possible hang in the classifier code the getsockopt and setsockopt system calls did not handle sign bits correctly which made a local DoS and other attacks possible ----- ci stanno castigando???? ----- the sysctl system call did not handle sign bits correctly which allowed a user to write in kernel memory ----- ancora ----- ptrace/exec races that could give a local user extra privileges possible abuse of a boundary case in the sockfilter code ----- Janezz!!!!!!!!!!!!!!!!!!! ----- SYSV shared memory code could overwrite recently freed memory which might cause problems the packet lengh checks in the masquerading code were a bit lax (probably not exploitable) ----- almeno questo! ----- some x86 assembly bugs caused the wrong number of bytes to be copied a local user could deadlock the kernel due to bugs in the UDP port allocation. -------------------- Miga poco!!!! Bestia! Diaolin -- Art. 21. Tutti hanno diritto di manifestare liberamente il proprio pensiero con la parola,lo scritto e ogni altro mezzo di diffusione. La stampa non può essere soggetta ad autorizzazioni o censure. Art. 33. L'arte e la scienza sono libere e libero ne è l'insegnamento. Costituzione italiana. -- Per iscriversi (o disiscriversi), basta spedire un messaggio con SOGGETTO "subscribe" (o "unsubscribe") a mailto:linuxtrent-request@xxxxxxxxxxxxxxxxx