<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: Serious Linux 2.0.34 security problem

Re: Serious Linux 2.0.34 security problem

From: Alan Cox <alan_at_LXORGUK.UKUU.ORG.UK>
Date: Wed, 1 Jul 1998 17:07:15 +0100

> > fcntl(0,F_SETOWN,p);
> > s = fcntl(0,F_GETFL,0);
> > fcntl(0,F_SETFL,s|O_ASYNC);
> > printf("Sending SIGIO - press enter.\n");
> > getchar();
> > fcntl(0,F_SETFL,s&~O_ASYNC);
> > printf("SIGIO send attempted.\n");
> > return 0;
> > }
>
> Well, that looks like one of the class of security problems described
> by www.openbsd.org/advisories/signals. Hasn't anyone else fixed those
> problems yet?

Of course Theo if you actually bothered to look back at the Linux sources
you'd see thats an error that crept in and we had SIGIO right way before
the old advisories that predate OpenBSD.

Alan
Received on Jul 02 1998

This message: [ Message body ]
Next message: Jackson Dodd: "1998 USENIX Annual Technical Conference - Call for Papers"
Previous message: Brian Martin: "RSI.0005.05-14-98.SUN.LIBNSL (w/ errata)"
In reply to: Theo de Raadt: "Re: Serious Linux 2.0.34 security problem"
Next in thread: Jackson Dodd: "1998 USENIX Annual Technical Conference - Call for Papers"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos