Guru dell'Eccelso Picco » kernel tun bug http://blog.gurudelleccelsopicco.org Things should be as simple as possible, but not simpler. -- Albert Einstein Sun, 05 Feb 2012 20:44:46 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Root exploit for Linux Kernel in the Tun Interface http://blog.gurudelleccelsopicco.org/2009/07/root-exploit-for-linux-kernel-in-the-tun-interface/ http://blog.gurudelleccelsopicco.org/2009/07/root-exploit-for-linux-kernel-in-the-tun-interface/#comments Wed, 22 Jul 2009 21:30:57 +0000 Luca Maranzano http://gurudelleccelsopicco.wordpress.com/?p=76 Brad Spengler, the developer behind the Grsecurity project, has published an exploit for a vulnerability in the Tun interface in Linux kernel 2.6.30 and 2.6.18, which can be exploited by attackers to obtain root privileges.

The fix is available for kernel 2.6.30.2, see the patch here.

Now the real question is: is it a GCC issue (the [...]]]> Brad Spengler, the developer behind the Grsecurity project, has published an exploit for a vulnerability in the Tun interface in Linux kernel 2.6.30 and 2.6.18, which can be exploited by attackers to obtain root privileges.

The fix is available for kernel 2.6.30.2, see the patch here.

Now the real question is: is it a GCC issue (the fno-delete-null-pointer-checks optimization) or a programming error? I vote for the second :-)

((enjoy))

]]> http://blog.gurudelleccelsopicco.org/2009/07/root-exploit-for-linux-kernel-in-the-tun-interface/feed/ 0