Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1999-q4

Bugtraq Archives: Re: local users can panic linux kernel (was:

Re: local users can panic linux kernel (was: SuSE syslogd advisory)

Alan Cox (alanLXORGUK.UKUU.ORG.UK)
Sat, 20 Nov 1999 01:42:53 +0000

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Next message: antirezINVECE.ORG: "more about IP ID"
Previous message: Ussr Labs: "Remote DoS Attack in Vermillion FTP Daemon (VFTPD) v1.23 Vulnerability"
Next in thread: Darren Reed: "Re: local users can panic linux kernel (was: SuSE syslogd advisory)"

> Taking a guess, I would say that the panic is caused by instability of
> the linux select() implementation, and could therefore be abused in other
> programs that manage an unlimited amount of connections using the select
> syscall.

its an old bug in 2.0 kernels with garbage collection on Unix domain sockets
if you bumped the number up above the default. I believe 2.2 (certainly
all modern 2.2) and 2.3 should be immune to this.

Alan

Next message: antirezINVECE.ORG: "more about IP ID"
Previous message: Ussr Labs: "Remote DoS Attack in Vermillion FTP Daemon (VFTPD) v1.23 Vulnerability"
Next in thread: Darren Reed: "Re: local users can panic linux kernel (was: SuSE syslogd advisory)"

This archive was generated by hypermail 2.0b3 on Mon Nov 22 1999 - 14:58:34 CST