[wplug] Core Dump Vulnerability
David Ostroske
eksortso at gmail.com
Thu May 12 15:26:38 EDT 2005
On 5/12/05, Brandon Kuczenski <brandon at 301south.net> wrote:
> Anybody on here hear of this:
>
> http://www.securityfocus.com/archive/1/397966/2005-05-09/2005-05-15/0
>
> "A locally exploitable flaw has been found in the Linux ELF binary format
> loader's core dump function that allows local users to gain root
> privileges and also execute arbitrary code at kernel privilege level."
>
> Hmmm.
Surely needs to be fixed. And I'm stupidly sure that the kernel
hackers could fix it.
But for legacy purposes, there might be a way to set the size of core
dumps to 0 for all but local developers. I think this can be done with
PAM, can't it?
http://lists.virus.org/bugtraq-0207/msg00079.html
> -Brandon
--
David Ostroske <eksortso at gmail.com>
More information about the wplug
mailing list