mailing list archives
Re: Linux ELF loader vulnerabilities
From: Ted Percival <ted () mrphp com au>
Date: Thu, 11 Nov 2004 13:12:03 +1000
These vulnerabilities appear to exist in 2.6.9 as well. All five buggy
lines appear verbatim in the 2.6.9 source.
Paul Starzetz wrote:
Synopsis: Linux kernel binfmt_elf loader vulnerabilities
Product: Linux kernel
Version: 2.4 up to to and including 2.4.27, 2.6 up to to and
CVE: not assigned
Author: Paul Starzetz <ihaquer () isec pl>
Date: Nov 10, 2004
Numerous bugs have been found in the Linux ELF binary loader while
handling setuid binaries.
Full-Disclosure - We believe in it.