Re: local root exploit confirmed in 2.6.10: Linux 2.6 KernelCapability LSM Module Local Privilege Elevation

From: Lee Revell
Date: Wed Dec 29 2004 - 05:34:48 EST

Next message: Michael Tewner: "Linux SMT question"
Previous message: bert hubert: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
In reply to: bert hubert: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
Next in thread: Serge E. Hallyn: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2004-12-29 at 11:25 +0100, bert hubert wrote:
> On Tue, Dec 28, 2004 at 04:21:55PM -0500, Lee Revell wrote:
> > Frank Barknecht pointed this out on linux-audio-dev, it's a horrible
> > bug, I confirmed it in 2.6.10, and have not seen it mentioned on the
> > list.
>
> Although this sucks, it should be pointed out that it only grants root to
> users able to force the loading of a certain module, aka 'root'.

Not force the loading of a certain module, but predict when it will be
loaded. Still, not easy to exploit.

Lee

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michael Tewner: "Linux SMT question"
Previous message: bert hubert: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
In reply to: bert hubert: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
Next in thread: Serge E. Hallyn: "Re: local root exploit confirmed in 2.6.10: Linux 2.6 Kernel Capability LSM Module Local Privilege Elevation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]