Re: Root compromise via zgv

From: Alan Cox (alanat_private)
Date: Tue Oct 27 1998 - 06:08:41 PST

Next message: Aleph One: "Re: nestea v2 against freebsd 3.0-Release"

Previous message: Shaju Zachariah: "Re: JavaScript and Netscape 4.5"
Maybe in reply to: Nergal: "Root compromise via zgv"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Answer 1. Besides port access granted by ioperm/iopl, svgalib needs write
> access to /dev/mem to operate. Therefore svgalib keeps an open
> descriptor ( number three usually ) to /dev/mem ( is it true in all cases ?
> can someone confirm that authoritatively ? ). So, we can modify our uid

[It does not need to, its yet another svgalib bug if it does.]

And the answer to svgalib as a whole is 'before installing this package
read back 2 years of bugtraq and tell me why you are installing it'

Alan

Next message: Aleph One: "Re: nestea v2 against freebsd 3.0-Release"
Previous message: Shaju Zachariah: "Re: JavaScript and Netscape 4.5"
Maybe in reply to: Nergal: "Root compromise via zgv"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:21:13 PDT