|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Serious Linux 2.0.34 security problem
Alan Cox (alan
LXORGUK.UKUU.ORG.UK)Wed, 1 Jul 1998 17:07:15 +0100
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Jackson Dodd: "1998 USENIX Annual Technical Conference - Call for Papers"
- Previous message: Brian Martin: "RSI.0005.05-14-98.SUN.LIBNSL (w/ errata)"
- In reply to: Theo de Raadt: "Re: Serious Linux 2.0.34 security problem"
> > fcntl(0,F_SETOWN,p);
> > s = fcntl(0,F_GETFL,0);
> > fcntl(0,F_SETFL,s|O_ASYNC);
> > printf("Sending SIGIO - press enter.\n");
> > getchar();
> > fcntl(0,F_SETFL,s&~O_ASYNC);
> > printf("SIGIO send attempted.\n");
> > return 0;
> > }
>
> Well, that looks like one of the class of security problems described
> by www.openbsd.org/advisories/signals. Hasn't anyone else fixed those
> problems yet?
Of course Theo if you actually bothered to look back at the Linux sources
you'd see thats an error that crept in and we had SIGIO right way before
the old advisories that predate OpenBSD.
Alan
- Next message: Jackson Dodd: "1998 USENIX Annual Technical Conference - Call for Papers"
- Previous message: Brian Martin: "RSI.0005.05-14-98.SUN.LIBNSL (w/ errata)"
- In reply to: Theo de Raadt: "Re: Serious Linux 2.0.34 security problem"