Description |
- |
A security issue was found in the Linux kernel. When there is a crash on the system, kdump generates the dmesg file with incorrect permissions. |
+ |
A security issue was found in kexec-tools where vmcore-dmesg.txt extracted from the vmcore of a previous kernel panic was created with incorrect permissions. It is possible that this could be used to leak kernel internal information from a previous execution if it was output to the ring buffer or part of the panic backtrace. An unprivileged user with a local account can use this to extract kernel internal information resulting in an information leak. |
|