View Single Post
  #1   (View Single Post)  
Old 24th January 2012
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default Linux root exploit due to memory access - Update 2

From http://h-online.com/-1419834

Quote:
Linus Torvalds released a Linux kernel update last week which fixes a flaw in the access control to memory. Shortly afterwards, exploits appeared making it possible to gain root privileges using this error.

Since Linux kernel version 2.6.39 the dump of each process can be viewed in /proc/<pid>/mem and even written to. Before 2.6.39, an #ifdef in the code had prevented writing, but in 2.6.39, the checks had been deemed adequate, so the #ifdef was removed. Those checks, to ensure that only processes with the correct permission could write to the memory, instead proved inadequate and could be easily fooled.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote