|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Brad Spengler (spender
grsecurity.net)
Date: Mon Jul 20 2009 - 08:36:52 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> I am not sure about the SELinux policy error he used to
> exploit the RHEL 5.? Beta.
It was a default RHEL 5.3 SELinux policy. The same vulnerability from
the policy exists in Fedora 10 and 11. I haven't tested anything else,
but I imagine lots more are vulnerable (and it doesn't matter what
kernel you're running). There will be a CVE for this vulnerability as
well.
(Really there should have been a CVE for the lack of
-fno-delete-null-pointer-checks instead of pretending the only problem
was /dev/net/tun. As the commit to add it showed (and at least 10 other
commits to the kernel this weekend) lots of other code was affected, so
someone not applying a fix for a CVE mentioning only /dev/net/tun
because they don't have the code for /dev/net/tun compiled in, is going
to be missing out on a number of fixes).
-Brad
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFKZHLzmHm2SUJF1GoRAqEkAJwIfC+kxHIlcMnP+VpdltPhfqa4FwCfRFMl
ODM9mjnjmQcaOcSLoULKNjM=
=kTDK
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]