594
edits
Changes
Created page with "== Changes == Since {{kernel link|rhel6|042stab136.1}}: * Rebase to RHEL6u10 kernel 2.6.32-754.12.1.el6 * '''[Important]''' A vulnerability was found in the fs/inode.c:inode_..."
== Changes ==
Since {{kernel link|rhel6|042stab136.1}}:
* Rebase to RHEL6u10 kernel 2.6.32-754.12.1.el6
* '''[Important]''' A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the Linux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. (CVE-2018-13405)
* Minor ploop improvements.
=== See also ===
* {{RHSA|2019:0717}}
* {{CVE|2018-13405}}
Since {{kernel link|rhel6|042stab136.1}}:
* Rebase to RHEL6u10 kernel 2.6.32-754.12.1.el6
* '''[Important]''' A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the Linux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. (CVE-2018-13405)
* Minor ploop improvements.
=== See also ===
* {{RHSA|2019:0717}}
* {{CVE|2018-13405}}