Bugtraq: 2.2.14 Kernel exec/open bug (?)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

2.2.14 Kernel exec/open bug (?)

From: cracker () CRACKER HU (The Cr0W)
Date: Fri, 5 May 2000 13:31:04 -0400


Hello,

While browsing the redhat updates pages yesterday i've found
http://www.redhat.com/support/errata/RHBA-2000018-10.html which reads:

"2. Problem description:
       The following problems have been fixed in this kernel release:
[...]
4.Exec bug fixes a problem where any user on the system could open any file or
device
           for side effects on open()"

I couldn't obtain any information on this bug on linux.com, slashdot.org,
linuxhq.com, securityfocus, etc., so if someone can tell me more about this,
drop an email to anyad () kapu hu please!

Regards,
Tamas Foldi

. . _ __ _____________________________________________________ __ _ . .
Foldi Tamas - Perl Programmer - Unix System Administrator - WWW.KAPU.HU
tamas () kapu hu / crow () linuxfreak com / (+3630) 221-7477 / PGP:0x6C244D70
 For more info about hungarian security scene, conntact Anyad SDI team

By Date By Thread

Current thread:

Re: Denial of service attack against tcpdump, (continued)
- glibc resolver weakness antirez (May 02)
  - Re: glibc resolver weakness Bennett Todd (May 03)
  - Re: glibc resolver weakness Valdis.Kletnieks () VT EDU (May 03)
  - Re: glibc resolver weakness Andrew Brown (May 03)