84 matches found
CVE-2008-1940
The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce usertransitiondeny and usertransitionallow rules for the 1 syssetfsuid and 2 syssetfsgid calls, which allows local users to bypass restrictions for those calls...
CVE-2008-1940
The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce usertransitiondeny and usertransitionallow rules for the 1 syssetfsuid and 2 syssetfsgid calls, which allows local users to bypass restrictions for those calls...
CVE-2008-1940
The vulnerability CVE-2008-1940 affects grsecurity RBAC before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2, where the RBAC feature fails to enforce user_transition_deny and user_transition_allow for the sys_setfsuid and sys_setfsgid calls. This allows local users to bypass restrictions on these calls. Th...
grsecurity RBAC本地绕过安全限制漏洞
BUGTRAQ ID: 28889 grsecurity是一组Linux内核补丁,用于提高安全性。 grsecurity的基于角色访问控制(RBAC)系统在强制usertransitiondeny和usertransitionallow规则时存在漏洞,允许本地用户在调用syssetfsuid和syssetfsgid期间绕过这些规则的限制,执行非授权操作。 grsecurity grsecurity Kernel Patch 2.6 grsecurity grsecurity Kernel Patch 2.4 grsecurity ----------...
da-adv-01202007.txt
Digital Armaments advisory is 01.20.2007 http://www.digitalarmaments.com/2007200184936274.html I. Background grsecurity is an innovative approach to security utilizing a multi-layered detection, prevention, and containment model. It is licensed under the GPL. For further information or detail abo...
grsecurity privilege escalation
Privilege escalation with expandstack...
Digital Armaments Security Advisory 20.01.2007: Grsecurity Kernel PaX Vulnerability
Digital Armaments advisory is 01.20.2007 http://www.digitalarmaments.com/2007200184936274.html I. Background grsecurity is an innovative approach to security utilizing a multi-layered detection, prevention, and containment model. It is licensed under the GPL. For further information or detail abo...
Grsecurity Kernel PaX本地特权提升漏洞
Grsecurity Kernel PAX是一款Linux操作系统的内核安全加强补丁。 Grsecurity补丁中的expandstack存在未明错误,本地攻击者可以利用漏洞提升特权。 目前没有详细漏洞细节提供。 grsecurity grsecurity Kernel Patch 2.1.8 grsecurity grsecurity Kernel Patch 2.1.7 grsecurity grsecurity Kernel Patch 2.1.6 grsecurity grsecurity Kernel Patch 2.1.5 grsecurity grsecurity Kern...
Design/Logic Flaw
Unspecified vulnerability in the expandstack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has...
CVE-2007-0253
Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expandstack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function the...
CVE-2007-0257
Unspecified vulnerability in the expandstack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has...
CVE-2007-0257
Unspecified vulnerability in the expandstack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has...
CVE-2007-0253
Unspecified vulnerability in the grsecurity patch has unspecified impact and remote attack vectors, a different vulnerability than the expandstack vulnerability from the Digital Armaments 20070110 pre-advisory. NOTE: the grsecurity developer has disputed this issue, stating that "the function the...
CVE-2007-0257
Unspecified vulnerability in the expandstack function in grsecurity PaX allows local users to gain privileges via unspecified vectors. NOTE: the grsecurity developer has disputed this issue, stating that "the function they claim the vulnerability to be in is a trivial function, which can, and has...
CVE-2007-0257
The CVE-2007-0257 entry concerns an unspecified vulnerability in the expand_stack function of grsecurity PaX that could allow local privilege escalation. Affected component is the expand_stack function; underlying root cause and concrete exploit vectors are not publicly detailed in the provided d...
CVE-2007-0253
The available connected documents identify a grsecurity patch vulnerability described as a privilege escalation related to an “expand_stack” issue. The CVE-2007-0253 description in the NVD/NVD-derived entries calls the vulnerability unspecified in impact and vectors, noting the grsecurity develop...
PT-2007-1729 · Grsecurity · Grsecurity Pax
Name of the Vulnerable Software and Affected Versions: grsecurity PaX affected versions not specified Description: The issue concerns an unspecified vulnerability in the expand stack function, potentially allowing local users to gain privileges through unspecified vectors. However, the grsecurity...
PT-2007-1726 · Grsecurity · Grsecurity Patch
Name of the Vulnerable Software and Affected Versions: grsecurity patch affected versions not specified Description: The issue concerns an unspecified vulnerability in the grsecurity patch, which is reported to have remote attack vectors. However, the grsecurity developer has disputed this issue,...
Grsecurity内核PaX本地权限提升漏洞
Grsecurity Linux是一款开放源代码操作系统。 Grsecurity的expandstack函数实现上存在漏洞,本地攻击者可能利用此漏洞以root用户权限执行任意指令。 grsecurity grsecurity Kernel Patch = 2.1.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.grsecurity.net/...
Digital Armaments Security Pre-Advisory 11.01.2007: Grsecurity Kernel PaX - Local root vulnerability
Digital Armaments pre-advisory is 01.10.2007 http://www.digitalarmaments.com/pre2007-00018659.html Digital Armaments realease pre-advisory of vulnerabilties and exploit avaiable only to Platinum Subscriptors. The full-advisory will might be released to the public after 6 months. I. Background...