Re: Linux proc exploit

Alan Cox (
Wed, 26 Nov 1997 16:39:48 +0000 (GMT)

> Linux has a vulnerability in the proc filing system: it can be used by root to escape from
> chroot() areas.

Correct. Its irrelecant

On any unix platform root can do

mkdir foo
chroot foo
cd ../../../../../../../..
chdir .

root can use iopl() too

You should not have any root setuid task in a chroot area.