projects / unionfs-2.6.39.y.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 52cbb7b) | patch
fix prctl privilege escalation and suid_dumpable (CVE-2006-2451)
authorGreg Kroah-Hartman <gregkh@suse.de>
Thu, 6 Jul 2006 20:02:05 +0000 (13:02 -0700)
committerGreg Kroah-Hartman <gregkh@suse.de>
Thu, 6 Jul 2006 20:02:05 +0000 (13:02 -0700)
commit0af184bb9f80edfbb94de46cb52e9592e5a547b0
treec8b28a09bb71332cbf1452aff7d89adb74c33f6btree | snapshot
parent52cbb7b78994ea3799f1bbb8c03bce1e2f72a271commit | diff
fix prctl privilege escalation and suid_dumpable (CVE-2006-2451)

Based on a patch from Ernie Petrides

During security research, Red Hat discovered a behavioral flaw in core
dump handling. A local user could create a program that would cause a
core file to be dumped into a directory they would not normally have
permissions to write to. This could lead to a denial of service (disk
consumption), or allow the local user to gain root privileges.

Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
kernel/sys.c diff | blob | history
unionfs2-2.6.39.y