EUVD-2009-1335

Malware in sbrugna...

SUSE CVE-2009-1337

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit

No description provided by source. !/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals to a privileged suidroot...

SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 6236)

The Linux kernel on SUSE Linux Enterprise 10 Service Pack 2 was updated to fix various security issues and several bugs. The following security issues were fixed: CVE-2009-0834: The auditsyscallentry function in the Linux kernel on the x8664 platform did not properly handle 1 a 32-bit process...

kernel: exit_notify: kill the wrong capable(CAP_KILL) check

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

openSUSE Security Update : kernel (kernel-951)

This kernel update for openSUSE 11.0 fixes some bugs and several security problems. The following security issues are fixed: A local denial of service problem in the splice2 system call. CVE-2009-1630: The nfspermission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel...

kernel: exit_notify: kill the wrong capable(CAP_KILL) check

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Debian DSA-1794-1 : linux-2.6 - denial of service/privilege escalation/information leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation, or information leak. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4307 Bryn M. Reeves reported a denial of service in the N...

CVE-2009-1337

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Design/Logic Flaw

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

CVE-2009-1337

CVE-2009-1337 : Affected: Linux kernel up to 2.6.30-rc1 (exit_notify in kernel/exit.c). Root cause: exit_notify does not restrict exit signals when CAP_KILL is held, enabling a local user to set a process exit_signal and use exec to launch a setuid program. Impact: local privilege escalation via ...

CVE-2009-1337

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Linux kernel &lt;2.6.29 exit_notify() local root exploit

No description provided by source. !/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals to a privileged suidroot...

Linux Kernel 'exit_notify()' CAP_KILL校验本地特权提升漏洞

BUGTRAQ ID: 34405 CNCAN ID：CNCAN-2009040803 Linux是一款开放源代码的操作系统。 Linux exitnotify中CAPKILL检查存在问题，本地攻击者可以利用漏洞提升特权。 无论怎样重置-exitsignal，恶意用户可以绕过检查，使得恶意应用程序可以在退出前执行setuid两进制程序。导致特权提升。 Linux kernel 2.6.29 -git8 Linux kernel 2.6.29 -git1 Linux kernel 2.6.29 Linux kernel 2.6.28 9 Linux kernel 2.6.28 8 Linu...

Linux Kernel exit_notify() Local Root

!/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals to a privileged suidroot parent process. Due to a bad check...

Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits ====================================================================== Linux Kernel 2.6.29 exitnotify Local Privilege Escalation Exploit ====================================================================== !/bin/sh gw-notexit.sh: Linux kerne...

Linux Kernel 2.6.29 - exit_notify() Local Privilege Escalation

Linux Kernel 2.6.29 - exitnotify Local Privilege Escalation !/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals...

Linux Kernel &lt; 2.6.29 - &#039;exit_notify()&#039; Local Privilege Escalation

!/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals to a privileged suidroot parent process. Due to a bad check...