Re: Local user can send forged packets

From: Solar Designer (solarat_private)
Date: Wed Oct 27 1999 - 07:22:13 PDT

Next message: Charles M. Richmond: "Re: CERT Advisory CA-99.13 - Multiple Vulnerabilities in WU-FTPD"

Previous message: David F. Skoll: "Re: Linux kernel source problem"
Maybe in reply to: Marc SCHAEFER: "Local user can send forged packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>
> Several daemons drop privilege, you stop them restoring the state and thus
> expose a new exciting hole. Just copy the 2.2 fix - stop the ldisc open, that
> enforces what you need.

I've done that for 2.0.38-ow4, which also includes some ELF loader
fixes for issues (DoS) found by Pavel Kankovsky, and a few more.

Signed,
Solar Designer

Next message: Charles M. Richmond: "Re: CERT Advisory CA-99.13 - Multiple Vulnerabilities in WU-FTPD"
Previous message: David F. Skoll: "Re: Linux kernel source problem"
Maybe in reply to: Marc SCHAEFER: "Local user can send forged packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:08:51 PDT