Re: FreeBSD (and other BSDs?) local root explot

Stas Kisel (stasSONET.CRIMEA.UA)
Thu, 26 Aug 1999 20:19:43 +0400

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Norbert Warmuth: "Re: midnight commander vulnerability(?)"
• Previous message: Luigi Mori: "Re: NT Predictable Initial TCP Sequence numbers - changes observedwith SP4"
• In reply to: Roy Hills: "NT Predictable Initial TCP Sequence numbers - changes observed with SP4"
• Next in thread: Stas Kisel: "Re: FreeBSD (and other BSDs?) local root explot"

> From: Przemyslaw Frasunek <secureFREEBSD.LUBLIN.PL>
> Subject: FreeBSD (and other BSDs?) local root explot
> fix:
> - limit root's coredump size
> - patch libc

For those who did not read bugtraq closely: the patch is available
at http://sonet.crimea.ua/fts_patch/fts_patch
and it was posted earlier under subject "fts, du, find"

PS. I did not checked, but I'm pretty sure that skipped program
exploits that bug.

\bye
Stas

• Next message: Norbert Warmuth: "Re: midnight commander vulnerability(?)"
• Previous message: Luigi Mori: "Re: NT Predictable Initial TCP Sequence numbers - changes observedwith SP4"
• In reply to: Roy Hills: "NT Predictable Initial TCP Sequence numbers - changes observed with SP4"
• Next in thread: Stas Kisel: "Re: FreeBSD (and other BSDs?) local root explot"

This archive was generated by hypermail 2.0b3 on Sun Aug 29 1999 - 02:15:35 CDT