CVE-2009-3889

Published: Nov 16, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the (1) behavior and (2) logging level of the driver by modifying this file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SA:2009:061

vendor-advisory

x_refsource_SUSE

USN-864-1

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=526068

x_refsource_MISC

[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files

mailing-list

x_refsource_MLIST

37019

vdb-entry

x_refsource_BID

http://support.avaya.com/css/P8/documents/100073666

x_refsource_CONFIRM

37909

third-party-advisory

x_refsource_SECUNIA

60202

vdb-entry

x_refsource_OSVDB

oval:org.mitre.oval:def:11018

vdb-entry

signature

x_refsource_OVAL

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66dca9b8c50b5e59d3bea8b21cee5c6dae6c9c46

x_refsource_CONFIRM

SUSE-SA:2009:064

vendor-advisory

x_refsource_SUSE

[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files

mailing-list

x_refsource_MLIST

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27

x_refsource_CONFIRM

SUSE-SA:2010:013

vendor-advisory

x_refsource_SUSE

RHSA-2010:0095

vendor-advisory

x_refsource_REDHAT

oval:org.mitre.oval:def:7163

vdb-entry

signature

x_refsource_OVAL

RHSA-2010:0046

vendor-advisory

x_refsource_REDHAT

DSA-2005

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-3889

Description

Affected Products

References