FreeBSD 6.4 pipeclose()/knlist_cleardel() race condition exploit

No description provided by source. if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits vulnerability to run code in kernel mode, giving root shell and escaping from jail. endif /...

linux trustees 1.5 long path name vulnerability

Linux trustees is a kernel patch which provide Netware-like permissions to linux. It is not in kernel by default. For more information see project's website at http://www.braysystems.com/linux/trustees.html Problem description: When accessing a file or directory with a very long path the process...