Re: Kernel 2.4 ioperm

To: debian-security@lists.debian.org
Subject: Re: Kernel 2.4 ioperm
From: Thomas Krennwallner <djmaecki@ull.at>
Date: Fri, 23 May 2003 17:07:31 +0200
Message-id: <20030523150731.GC29189@ull.at>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <20030523141622.GA5131@goofy.entenhausen>
References: <200305221350.51391.xbud@g0thead.com> <20030522211621.GW21698@paranoidfreak.co.uk> <20030523015452.GA6947@server> <20030523141622.GA5131@goofy.entenhausen>

Hi!

On Fri May 23, 2003 at 04:16:22PM +0200, Steffen Schulz wrote:
> Am I right that a local User is able to crash the system
> by putting evil data into these mysterious I/O-Ports?
> Is privilege escalation possible?
> 
> Is this exploitable out of a chroot-jail(ssh,postfix)?

AFAICS this bug is not as evil as the ptrace bug but it's a "good" DoS
for your system. And yes this one can event circumvent a chroot-jail.

so long
Thomas

-- 
 .''`.  Obviously we do not want to leave zombies around. - W. R. Stevens
: :'  : Thomas Krennwallner <djmaecki at ull dot at>
`. `'`  1024D/67A1DA7B 9484 D99D 2E1E 4E02 5446  DAD9 FF58 4E59 67A1 DA7B
  `-    http://bigfish.ull.at/~djmaecki/

Reply to:

References:
- Kernel 2.4 ioperm
  - From: xbud <xbud@g0thead.com>
- Re: Kernel 2.4 ioperm
  - From: Simon Huggins <huggie@earth.li>
- Re: Kernel 2.4 ioperm
  - From: Martin Helas <mhelas@helas.net>
- Re: Kernel 2.4 ioperm
  - From: Steffen Schulz <pepeatgoofy@gmx.net>

Prev by Date: Re: Kernel 2.4 ioperm
Next by Date: Re: Kernel 2.4 ioperm
Previous by thread: Re: Kernel 2.4 ioperm
Next by thread: Re: Kernel 2.4 ioperm
Index(es):
- Date
- Thread