Re: As 2.0 looms
Alan Cox (alan@lxorguk.ukuu.org.uk)
Mon, 6 May 1996 18:45:01 +0100 (BST)
> Quick fix in .96, but breaks at least some versions of strace. Changed
> in .98 - strace works again, but I think there may be a race condition
> if read() passes the checks, sleeps on memcpy_tofs() due to a swap-in,
> and the target process execs a setuid program in this time window.
Thats bad because with an nfs program and a PC on the lan you can use for
flooding it becomes quite a wide window.
Alan