Bug#378324: local root hole (race condition in /proc)

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#378324: local root hole (race condition in /proc)
From: Robert Millan <rmh@aybabtu.com>
Date: Sat, 15 Jul 2006 12:46:42 +0200
Message-id: <[🔎] E1G1hfX-00082q-0b@aybabtu.com>
Reply-to: Robert Millan <rmh@aybabtu.com>, 378324@bugs.debian.org

Package: kernel-image-2.6.8-3-686
Version: 2.6.8-16sarge3
Severity: critical
Tags: security

See: http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047907.html

Workaround is simple: mount /proc as nosuid

The linux-2.6 packages in unstable are not affected (since they don't include
a.out support).

-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.8-3-686
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8)

Versions of packages kernel-image-2.6.8-3-686 depends on:
ii  coreutils [fileutils]         5.2.1-2    The GNU core utilities
ii  initrd-tools                  0.1.81.1   tools to create initrd image for p
ii  module-init-tools             3.2-pre1-2 tools for managing Linux kernel mo

-- no debconf information

Reply to:

Follow-Ups:
- Bug#378324: local root hole (race condition in /proc)
  - From: Florian Weimer <fw@deneb.enyo.de>
- Bug#378324: marked as done (local root hole (race condition in /proc))
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#378323: linux-image-2.6.17-1-686: CONFIG_SMP=y keeps APM poweroff from working
Next by Date: Re: Scheduling linux-2.6.16 2.6.16-17
Previous by thread: Bug#378323: linux-image-2.6.17-1-686: CONFIG_SMP=y keeps APM poweroff from working
Next by thread: Bug#378324: local root hole (race condition in /proc)
Index(es):
- Date
- Thread