Really nasty Linux security bug
Dustin Mollo
dustin at sonic.net
Fri Oct 19 11:53:58 PDT 2001
Hey all. For those that doin't read slashdot all that often, check out this
email over on SecurityFocus.
http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=221337&start=2001-10-15&end=2001-10-21
ObQuote:
There are two bugs present in Linux kernels 2.2.x, x<=19 and 2.4.y, y<=9.
The first vulnerability results in local DoS. The second one, involving
ptrace, can be used to gain root privileges locally (in case of default
install of most popular distributions). Linux 2.0.x is not vulnerable to the
ptrace bug mentioned.
-Dustin
More information about the talk
mailing list