Re: howcome there's no DSA for the latest Linux ptrace hole?

To: Jon <jon@tgpsolutions.com>
Cc: "Tom Goulet (UID0)" <uid0@em.ca>, debian-security@lists.debian.org
Subject: Re: howcome there's no DSA for the latest Linux ptrace hole?
From: Ralf Dreibrodt <rd@mesos.de>
Date: Fri, 21 Mar 2003 10:43:23 +0100
Message-id: <[🔎] 3E7ADEBB.7EF3E5E7@mesos.de>
References: <[🔎] 20030320225012.GM1014@nova.vor.em.ca> <[🔎] 1048210196.2416.3.camel@damocles>

Hi,

Jon wrote:
> 
> On Thu, 2003-03-20 at 14:50, Tom Goulet (UID0) wrote:
> 
> > Are the Debian kernels vulnerable to this hole?
> >
> 
> This post to BugTraq by Andrzej Szombierski (who found the problem)
> includes a sample exploit for x86.  You can use it to see if you are
> vulnerable.
> 
> http://www.securityfocus.com/archive/1/315635

stupid question, but is chmod 700 /proc enough?
This exploit doesn't work anymore.

Do you have any exploit which works after a chmod 700 /proc?

Regards,
Ralf Dreibrodt

Reply to:

References:
- howcome there's no DSA for the latest Linux ptrace hole?
  - From: "Tom Goulet (UID0)" <uid0@em.ca>
- Re: howcome there's no DSA for the latest Linux ptrace hole?
  - From: Jon <jon@tgpsolutions.com>

Prev by Date: Re: is iptables enough?
Next by Date: Re: howcome there's no DSA for the latest Linux ptrace hole?
Previous by thread: Re: howcome there's no DSA for the latest Linux ptrace hole?
Next by thread: Re: howcome there's no DSA for the latest Linux ptrace hole?
Index(es):
- Date
- Thread