Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability

Linux Kernel 'megaraid_sas' Driver Insecure File Permission Local Privilege Escalation Vulnerability

References:

[SCSI] megaraid_sas: remove sysfs dbg_lvl world writeable permissions (Joe Malicki)
Bug 526068 kernel: megaraid_sas permissions in sysfs (Bryn M. Reeves)
ChangeLog-2.6.27-rc4 (Kernel.org)
CVE request: kernel: bad permissions on megaraid_sas sysfs files (Eugene Teo)
Linux kernel Homepage (kernel.org)
ASA-2010-026 (Avaya)
ASA-2010-062 (Avaya)
ASA-2010-062 kernel security and bug fix update (RHSA-2010-0076) (Avaya)
kernel security and bug fix update (RHSA-2010-0076) (Avaya)
USN-864-1 (Ubuntu)

Privacy Statement
Copyright 2010, SecurityFocus