Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-10 Thread Janne Snabb
On 08/10/2012 09:35 PM, Simon L. B. Nielsen wrote: [..] > On 08/01/2012 05:09, Oliver Pinter wrote: >> I found this today on FD: >> >> http://seclists.org/fulldisclosure/2012/Aug/4 [..] > Eh, why wouldn't a CVE name not be assigned? If none is we should ask > MITRE to assign one, bu

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-10 Thread Simon L. B. Nielsen
On Wed, Aug 8, 2012 at 1:38 PM, Wesley Shields wrote: > On Wed, Aug 08, 2012 at 10:34:06AM +, Alexey Dokuchaev wrote: >> On Mon, Aug 06, 2012 at 01:49:50PM +0200, Rainer Hurling wrote: >> > Am 06.08.2012 10:03 (UTC+1) schrieb Doug Barton: >> > >On 08/01/2012 05:09, Oliver Pinter wrote: >> > >>

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-09 Thread Jason Helfman
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Aug 08, 2012 at 01:08:17PM +, Alexey Dokuchaev thus spake: >On Wed, Aug 08, 2012 at 08:38:43AM -0400, Wesley Shields wrote: >> On Wed, Aug 08, 2012 at 10:34:06AM +, Alexey Dokuchaev wrote: >> > VuXML entry will have to follow separately

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-08 Thread Alexey Dokuchaev
On Wed, Aug 08, 2012 at 08:38:43AM -0400, Wesley Shields wrote: > On Wed, Aug 08, 2012 at 10:34:06AM +, Alexey Dokuchaev wrote: > > VuXML entry will have to follow separately, as it is unclear whether new > > CVE number will be assigned or not. > > You can do the VuXML without a CVE for now an

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-08 Thread Wesley Shields
On Wed, Aug 08, 2012 at 10:34:06AM +, Alexey Dokuchaev wrote: > On Mon, Aug 06, 2012 at 01:49:50PM +0200, Rainer Hurling wrote: > > Am 06.08.2012 10:03 (UTC+1) schrieb Doug Barton: > > >On 08/01/2012 05:09, Oliver Pinter wrote: > > >>I found this today on FD: > > >> > > >>http://seclists.org/fu

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-08 Thread Alexey Dokuchaev
On Mon, Aug 06, 2012 at 01:49:50PM +0200, Rainer Hurling wrote: > Am 06.08.2012 10:03 (UTC+1) schrieb Doug Barton: > >On 08/01/2012 05:09, Oliver Pinter wrote: > >>I found this today on FD: > >> > >>http://seclists.org/fulldisclosure/2012/Aug/4 > > > >Apparently this affects us as well. Any news? >

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-06 Thread Rainer Hurling
Am 06.08.2012 10:03 (UTC+1) schrieb Doug Barton: On 08/01/2012 05:09, Oliver Pinter wrote: Hi all! I found this today on FD: http://seclists.org/fulldisclosure/2012/Aug/4 Apparently this affects us as well. Any news? Thanks for the info. I had been not aware of it before. NVidia has rel

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

2012-08-06 Thread Doug Barton
On 08/01/2012 05:09, Oliver Pinter wrote: > Hi all! > > I found this today on FD: > > http://seclists.org/fulldisclosure/2012/Aug/4 Apparently this affects us as well. Any news? -- I am only one, but I am one. I cannot do everything, but I can do something. And I will not let what