The aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the Linux kernel before 3.11.8 does not require the CAP_SYS_RAWIO capability, which allows local users to bypass intended access restrictions via a crafted ioctl call.
Publish Date : 2013-11-26 Last Update Date : 2014-03-26
Title |
Definition Id |
Class |
Family |
DEPRECATED: ELSA-2014-0285 -- kernel security, bug fix, and enhancement update (important) |
oval:org.mitre.oval:def:27368 |
|
unix |
DEPRECATED: ELSA-2014-0475 -- kernel security and bug fix update (important) |
oval:org.mitre.oval:def:26607 |
|
unix |
DSA-2906-1 linux-2.6 - several |
oval:org.mitre.oval:def:24412 |
|
unix |
ELSA-2014-0285-1 -- kernel security, bug fix, and enhancement update (important) |
oval:org.mitre.oval:def:27275 |
|
unix |
ELSA-2014-3021 -- Unbreakable Enterprise kernel security update (important) |
oval:org.mitre.oval:def:27318 |
|
unix |
ELSA-2014-3022 -- Unbreakable Enterprise kernel security update (important) |
oval:org.mitre.oval:def:27043 |
|
unix |
ELSA-2014-3023 -- Unbreakable Enterprise kernel security update (important) |
oval:org.mitre.oval:def:27092 |
|
unix |
ELSA-2014:0285: kernel security, bug fix, and enhancement update (Important) |
oval:org.mitre.oval:def:23863 |
|
unix |
ELSA-2014:0475: kernel security and bug fix update (Important) |
oval:org.mitre.oval:def:24573 |
|
unix |
RHSA-2014:0285: kernel security, bug fix, and enhancement update (Important) |
oval:org.mitre.oval:def:24254 |
|
unix |
RHSA-2014:0285: kernel security, bug fix, and enhancement update (Important) |
oval:com.redhat.rhsa:def:20140285 |
|
unix |
RHSA-2014:0475: kernel security and bug fix update (Important) |
oval:org.mitre.oval:def:24577 |
|
unix |
RHSA-2014:0475: kernel security and bug fix update (Important) |
oval:com.redhat.rhsa:def:20140475 |
|
unix |
SUSE-SU-2014:0189-1 -- Security update for Linux kernel |
oval:org.mitre.oval:def:25404 |
|
unix |
SUSE-SU-2014:0140-1 -- Security update for Linux kernel |
oval:org.mitre.oval:def:25283 |
|
unix |
SUSE-SU-2014:0287-1 -- Security update for Linux kernel |
oval:org.mitre.oval:def:24665 |
|
unix |
SUSE-SU-2014:0536-1 -- Security update for Linux kernel |
oval:org.mitre.oval:def:24982 |
|
unix |
SUSE-SU-2014:0832-1 -- Security update for Linux Kernel |
oval:org.mitre.oval:def:26156 |
|
unix |
USN-2107-1 -- linux vulnerabilities |
oval:org.mitre.oval:def:23857 |
|
unix |
USN-2108-1 -- linux-ec2 vulnerabilities |
oval:org.mitre.oval:def:24274 |
|
unix |
|
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.