Lucene search

K
suseSuseSUSE-SA:2005:021
HistoryApr 05, 2005 - 7:25 a.m.

local privilege escalation in kernel

2005-04-0507:25:34
lists.opensuse.org
39

EPSS

0

Percentile

9.7%

This Linux kernel security update fixes a problem within the Bluetooth kernel stack which can be used by a local attacker to gain root access or crash the machine.

Solution

Please install the updated packages. A workaround is to disable Bluetooth by using: - Remove or move away the bluetooth core module. On 2.6 kernels this is the file: /lib/modules/<kernel version>/kernel/net/bluetooth/bluetooth.ko On 2.4 kernels this is the file: /lib/modules/<kernel version>/kernel/net/bluetooth/bluez.o - Disable auto load of the bluetooth protocol module by commenting out the line: alias net-pf-31 bluez in /etc/modules.conf (2.4 systems) or the line: alias net-pf-31 bluetooth in /etc/modprobe.conf (2.6 systems). Make sure the module is not loaded, or run "rmmod bluetooth" / "rmmod bluez".