Bryn M. Reeves

**Name of the Vulnerable Software and Affected Versions** Red Hat Enterprise Linux (RHEL) 5 with Linux kernel 2.6.18 **Description** The issue concerns a Red Hat configuration step for the qla2xxx driver in the Linux kernel when N Port ID Virtualization (NPIV) hardware is used. This configuration sets world-writable permissions for certain files under /sys/class/scsi host/, specifically the `vport create` and `vport delete` files. As a result, local users can modify these files to make arbitrary changes to SCSI host attributes. **Recommendations** For Red Hat Enterprise Linux (RHEL) 5 with Linux kernel 2.6.18, consider restricting access to the `vport create` and `vport delete` files under /sys/class/scsi host/ to prevent local users from making unauthorized changes to SCSI host attributes.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.27 **Description** The issue concerns the megaraid sas driver in the Linux kernel, where the dbg lvl file has world-writable permissions. This allows local users to modify the file, which in turn enables them to change the behavior and logging level of the driver. **Recommendations** For Linux kernel versions prior to 2.6.27, update to version 2.6.27 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.26 **Description** A race condition exists in the do setlk function, allowing local users to cause a denial of service by interrupting an RPC call, resulting in a stray FL POSIX lock. This issue is related to the improper handling of a race between fcntl and close in the EINTR case. **Recommendations** For Linux kernel versions prior to 2.6.26, update to version 2.6.26 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions 2.6.31.6 and earlier openSUSE kernel-ps3-debuginfo (affected versions not specified) openSUSE kernel-ps3-debugsource (affected versions not specified) **Description** The issue affects the Linux kernel and openSUSE operating system, allowing for potential disruption of confidentiality, integrity, and availability of protected information. Exploitation can be done remotely. Specifically, the poll mode io file for the megaraid sas driver has world-writable permissions, enabling local users to modify the I/O mode of the driver by changing this file. **Recommendations** For Linux kernel versions 2.6.31.6 and earlier, consider restricting access to the poll mode io file to prevent local users from modifying it. For openSUSE kernel-ps3-debuginfo and kernel-ps3-debugsource, at the moment, there is no information about a newer version that contains a fix for this vulnerability.