Bug#295146: kernel: can delete root directories

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#295146: kernel: can delete root directories
From: Rehm <jagginess@yahoo.ca>
Date: Sun, 13 Feb 2005 18:31:09 -0500
Message-id: <[🔎] E1D0TCT-0007KQ-00@master.debian.org>
Reply-to: Rehm <jagginess@yahoo.ca>, 295146@bugs.debian.org

Package: kernel
Severity: critical
Justification: root security hole

Extremely insecure. Apparently after having been able to do mounting
on a diskimage disk1.img (sued to root under lightweight wm in X- xterm box) on a directory called ./1,
drwxr-xr-x  2 root  root     4096 2005-02-13 18:22 1
$
->as a normal user, (and my groups command shows no respect of being
member of root), I am able to delete directory 1, or shouldn't I? Either
I'm very dumb, or something is terribly wrong..Any other further details I can provide and test- I wouldn't
mind..Thanks for the feedback..

jagg

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.10
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)

Reply to:

Follow-Ups:
- Bug#295146: kernel: can delete root directories
  - From: Al Viro <viro@parcelfarce.linux.theplanet.co.uk>

Prev by Date: Bug#292190: Works for when using CONFIG_BLK_DEV_AMD74XX=y
Next by Date: Bug#295146: kernel: can delete root directories
Previous by thread: Bug#292190: Works for when using CONFIG_BLK_DEV_AMD74XX=y
Next by thread: Bug#295146: kernel: can delete root directories
Index(es):
- Date
- Thread