Re: lug-bg: Local root exploit v linux kernelite <2.2.15 i <=2.4.20
- Subject: Re: lug-bg: Local root exploit v linux kernelite <2.2.15 i <=2.4.20
- From: gf@email.domain.hidden (Georgi Chorbadzhiyski)
- Date: Wed, 19 Mar 2003 07:21:48 +0200
Georgi Chorbadzhiyski wrote:
<em class="quotelev1">> Âàñèë Êîëåâ wrote:
<em class="quotelev2">>> Tova go vidqh predi malko, i mislq, che e hubavo da se postne i tuk -
<em class="quotelev2">>> ima otkrit local root exploit prez ptrace() v linux kernela. Za poveche
<em class="quotelev2">>> podrobnosti mozhete da vidite
<em class="quotelev2">>> http://www.uwsg.indiana.edu/hypermail/linux/kernel/0303.2/0226.html ili
<em class="quotelev2">>> http://marc.theaimsgroup.com/?l=linux-kernel&m=104791735604202&w=2
<em class="quotelev2">>> Kakto si pishe tam, 2.2.15 e fixnatiq kernel za 2.2 seriite, a za 2.4
<em class="quotelev2">>> mozhete da si svalite patch-a ot
<em class="quotelev2">>> http://www.hardrock.org/kernel/2.4.20/linux-2.4.20-ptrace.patch
<em class="quotelev2">>>
<em class="quotelev2">>> ili da se hvanete i da si portnete na alan patch-a do sobstvenoto kernel
<em class="quotelev2">>> tree, shtoto toj ne e sprqmo 2.4.20,a sprqmo neshto negovo si(kato
<em class="quotelev2">>> preskochim momenta, che se opitva da patchne arch/um/neshtosi
<em class="quotelev2">>> (UserModeLinux), ima i edin reject iz schedulerite nqkude ...)
<em class="quotelev2">>>
<em class="quotelev2">>> p.s. Predpolagam, che problema e podoben na onzi ptrace() exploit predi
<em class="quotelev2">>> izvestno vreme, kojto iziskvashe da imash nqkakvo setuid binary (kakvoto
<em class="quotelev2">>> i da e), taka che _PREDPOLAGAM_ ,che kojto ne iska da restartira, mozhe
<em class="quotelev2">>> prosto da ne ostavq nishto setuid po sistemata si...ama ne vi
<em class="quotelev2">>> preporuchvam da mi vqrvate (za tova poslednoto) , a da se patchnete :)
<em class="quotelev1">>
<em class="quotelev1">> Ako ne izpolzvate kmod mozhete da spite spokoino.
<em class="quotelev1">>
<em class="quotelev1">> grep CONFIG_KMOD /usr/src/linux/.config
<em class="quotelev1">>
<em class="quotelev1">> Ako vidite:
<em class="quotelev1">> CONFIG_KMOD=y
<em class="quotelev1">>
<em class="quotelev1">> Patchvaite, ako ne, spokoino mozhete da izchakate 2.4.21
Re: na men :)
Estestveno mozhete prosto da izkliuchite KMOD, drug workaround ako wse
pak imate KMOD e:
echo "/sbin/not_exist" > /proc/sys/kernel/modprobe
Sled tozi red niama da mozhete da zarezhdate moduli, pone dokato
v /proc/sys/kernel/modprobe niama /sbin/modprobe. No za smetka na
tova ste imunizirani. Slozhete tozi red v rc.local primerno. Ako
ste s 2.4.19 taka ili inache triabva da pravi upgrade ako imate
"loshi" lokalni potrebiteli zaradi localniat DoS svarzhan s
upravlenieto na TF flag-a (btw samo za x86).
<p>
--
Georgi Chorbadzhiyski
http://georgi.unixsol.org/
============================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
============================================================================
|