Update udev to fix security vulnerabilites

Bug #362675 reported by Nicola Ferralis on 2009-04-17
252
Affects Status Importance Assigned to Milestone
The Dell Mini Project
Undecided
Unassigned

Bug Description

Current version on Dell Mini: 117-8msg6

On generic hardy: 117-8ubuntu0.2 (updated April 6th, 2009) to fix two security vulnerabilities (see below). These should be applied to udev for the dell mini.

udev (117-8ubuntu0.2) hardy-security; urgency=low

  * SECURITY UPDATE: root privilege escalation via udev event spoofing.
    - Add debian/patches/81-netlink-owner-check.patch: backport upstream
      fixes (CVE-2009-1185).
  * SECURITY UPDATE: overflow in path name encoding.
    - Add debian/patches/82-encoding-overflow.patch: backport upstream
      fixes (CVE-2009-1186).

CVE References

security vulnerability: no → yes
Chris Wayne (cwayne18) on 2009-04-28
Changed in dell-mini:
status: New → Confirmed
Changed in dell-mini:
status: Confirmed → Fix Committed
Changed in dell-mini:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers