Bugtraq: Re: local users can panic linux kernel (was: SuSE syslogd advisory)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: local users can panic linux kernel (was: SuSE syslogd advisory)

From: alan () LXORGUK UKUU ORG UK (Alan Cox)
Date: Sat, 20 Nov 1999 01:42:53 +0000

Taking a guess, I would say that the panic is caused by instability of
the linux select() implementation, and could therefore be abused in other
programs that manage an unlimited amount of connections using the select
syscall.


its an old bug in 2.0 kernels with garbage collection on Unix domain sockets
if you bumped the number up above the default. I believe 2.2 (certainly
all modern 2.2) and 2.3 should be immune to this.

Alan

By Date By Thread

Current thread:

Remote D.o.S Attack in G6 FTP Server v2.0 (beta 4/5) Vulnerability, (continued)