mailing list archives
Re: Local user can send forged packets
From: solar () FALSE COM (Solar Designer)
Date: Wed, 27 Oct 1999 18:22:13 +0400
Several daemons drop privilege, you stop them restoring the state and thus
expose a new exciting hole. Just copy the 2.2 fix - stop the ldisc open, that
enforces what you need.
I've done that for 2.0.38-ow4, which also includes some ELF loader
fixes for issues (DoS) found by Pavel Kankovsky, and a few more.