Re: Local root exploit with kmod and modutils > 2.1.121

From: Alan Cox (alan@lxorguk.UKuu.ORG.UK)
Date: Thu Nov 16 2000 - 12:19:45 EST

Next message: Zach Brown: "Re: sunhme.c patch for new PCI interface (UNTESTED)"
Previous message: Andi Kleen: "Re: Setting IP Options in the IP-Header"
In reply to: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Next in thread: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Reply: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> It checks CAP_SYS_MODULE nowadays.
>
> Which does not look good by the way, it is function of request_module(),
> rather than of caller.

Only the caller knows if the data is tainted. Thus only the caller can decide

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Zach Brown: "Re: sunhme.c patch for new PCI interface (UNTESTED)"
Previous message: Andi Kleen: "Re: Setting IP Options in the IP-Header"
In reply to: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Next in thread: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Reply: kuznet@ms2.inr.ac.ru: "Re: Local root exploit with kmod and modutils > 2.1.121"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 23 2000 - 21:00:10 EST