Re: [VULN 1/4] Fake notifications

To: Sergey Bugaev <bugaevc@gmail.com>, bug-hurd@gnu.org
Cc: debian-hurd@lists.debian.org, ludo@gnu.org, samuel.thibault@gnu.org, jlledom@mailfence.com, guix-devel@gnu.org, jbranso@dismail.de, rbraun@sceen.net
Subject: Re: [VULN 1/4] Fake notifications
From: Amos Jeffries <squid3@treenet.co.nz>
Date: Tue, 9 Nov 2021 09:36:22 +1300
Message-id: <[🔎] 1ce1356b-c40d-484f-ef2e-e3affd4a01a7@treenet.co.nz>
In-reply-to: <[🔎] 20211102163121.415934-2-bugaevc@gmail.com>
References: <[🔎] 20211102163121.415934-1-bugaevc@gmail.com> <[🔎] 20211102163121.415934-2-bugaevc@gmail.com>

On 3/11/21 05:31, Sergey Bugaev wrote:

Short description
=================

libports accepts fake notification messages from any client on any port, which
can lead to port use-after-free, which can be exploited for local privilege
escalation to get full root access to the system.


This has been assigned CVE-2021-43412


Amos

Reply to:

References:
- [VULN 0/4] Hurd vulnerability details
  - From: Sergey Bugaev <bugaevc@gmail.com>
- [VULN 1/4] Fake notifications
  - From: Sergey Bugaev <bugaevc@gmail.com>

Prev by Date: Re: [VULN 4/4] Process auth man-in-the-middle
Next by Date: Re: [VULN 2/4] No read-only mappings
Previous by thread: [VULN 1/4] Fake notifications
Next by thread: [VULN 2/4] No read-only mappings
Index(es):
- Date
- Thread