Bug#307900: kernel-image-2.6.8-2-386: This image, and maybe some others are easiably locally rootable. Exploit included.

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#307900: kernel-image-2.6.8-2-386: This image, and maybe some others are easiably locally rootable. Exploit included.
From: Samuli Suominen <sasuomin@uusikaupunki.fi>
Date: Fri, 06 May 2005 12:02:44 +0300
Message-id: <[🔎] 200505060900.j4690tC02324@uusikaupunki.fi>
Reply-to: Samuli Suominen <sasuomin@uusikaupunki.fi>, 307900@bugs.debian.org

Package: kernel-image-2.6.8-2-386
Severity: critical
Justification: breaks the whole system


Proof of consept: http://www.frsirt.com/exploits/20050322.k-rad.c.php
This would work on other NON-SMP kernels too. Makes kernel images
unusable for multiuser system.

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.12-rc3-mm3-k7
Locale: LANG=fi_FI@euro, LC_CTYPE=fi_FI@euro (charmap=ISO-8859-15)

Reply to:

Follow-Ups:
- Bug#307900: kernel-image-2.6.8-2-386: This image, and maybe some others are easiably locally rootable. Exploit included.
  - From: Horms <horms@debian.org>
- Bug#307900: marked as done (kernel-image-2.6.8-2-386: This image, and maybe some others are easiably locally rootable. Exploit included.)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#304949: kernel-image-2.6.11-1-k7: sound on emu10k1 is played multipe times.
Next by Date: config.gz files
Previous by thread: Bug#304949: kernel-image-2.6.11-1-k7: sound on emu10k1 is played multipe times.
Next by thread: Bug#307900: kernel-image-2.6.8-2-386: This image, and maybe some others are easiably locally rootable. Exploit included.
Index(es):
- Date
- Thread