---------- Forwarded message ---------- Date: Sat, 16 Jun 2001 11:08:53 -0400 (EDT) From: Aaron Campbell <aaronat_private> To: security-announceat_private Subject: patch for exec+ptrace security hole available A race condition exists in the kernel execve(2) implementation that opens a small window of vulnerability for a non-privileged user to ptrace(2) attach to a suid/sgid process. 2.8 patch: ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/030_kernexec.patch 2.9 patch: ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/007_kernexec.patch The fix has also been committed to the 2.8 and 2.9 stable branches. The bug was found by Georgi Guninski; Art Grabowski came up with a fix. Vagner sacramento
This archive was generated by hypermail 2b30 : Sat Jun 16 2001 - 13:28:18 PDT