2.6 kernel local-user root privilege hole
Michael ODonnell
michael.odonnell at comcast.net
Sun Feb 10 20:53:09 EST 2008
>On Feb 10, 2008 7:48 PM, Bill Sconce <sconce at in-spec-inc.com> wrote:
>> [ I just compiled and tried it. Sure enough, the program below,
>> run from user mode, gets a root shell. Yike.]
>
>I just tried this on Ubuntu-Server (7.04) and it didn't work. Running
>2.6.20-16-server
This worked with my 2.6.22 kernel as well as on a 2.6.18-4-k7 kernel.
It did not work on the RHEL3 system where I tried it because the 2.4
kernels don't have the vmsplice facility being exploited:
http://en.wikipedia.org/wiki/Splice_%28system_call%29
http://kerneltrap.org/node/6505
More information about the gnhlug-discuss
mailing list