oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

kernel: fs.suid_dumpable=2 privilege escalation

From: Florian Weimer <fweimer () redhat com>
Date: Thu, 16 Apr 2015 14:42:55 +0200
Should this be treated as a security vulnerability?

“fs: make dumpable=2 require fully qualified path”
<http://lwn.net/Articles/503682/>

Some widely-used cronie versions still do not have hardening and parse
commands in core dumps.

-- 
Florian Weimer / Red Hat Product Security
Previous By Date Next
Previous By Thread Next

Current thread: