Bug#601305: kfreebsd-8: pseudofs null ptr dereference exploit

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#601305: kfreebsd-8: pseudofs null ptr dereference exploit
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Sun, 24 Oct 2010 22:23:48 -0400
Message-id: <[🔎] AANLkTimm7Cq8JnwLRK3hJcXHex=aQ2n0XxkP3JiyrOMa@mail.gmail.com>
Reply-to: Michael Gilbert <michael.s.gilbert@gmail.com>, 601305@bugs.debian.org

package: kfreebsd-7
version: 7.3-7
severity: serious
tags: security

another freebsd privilege escalation has been disclosed:
http://www.exploit-db.com/exploits/15206/

this seems different than the recent CVE advisories.  i haven't
checked any of this, but they claim 7.0-7.2 are affected and don't
mention 8, so who knows if its affected.  all of this should be
checked.

thanks,
mike

Reply to:

Follow-Ups:
- Bug#601305: kfreebsd-8: pseudofs null ptr dereference exploit
  - From: Petr Salinger <Petr.Salinger@seznam.cz>

Prev by Date: Bug#601273: installation-report: kfreebsd-i386 install: non-fatal ad0 cache flush issue.
Next by Date: Bug#601305: kfreebsd-8: pseudofs null ptr dereference exploit
Previous by thread: Bug#601273: installation-report: kfreebsd-i386 install: non-fatal ad0 cache flush issue.
Next by thread: Bug#601305: kfreebsd-8: pseudofs null ptr dereference exploit
Index(es):
- Date
- Thread