[12673] in bugtraq
Re: local users can panic linux kernel (was: SuSE syslogd
daemon@ATHENA.MIT.EDU (Alan Cox)
Mon Nov 22 14:17:39 1999
Content-Type: text
Message-Id: <E11ozYF-00086g-00@the-village.bc.nu>
Date: Sat, 20 Nov 1999 01:42:53 +0000
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: mixter@NEWYORKOFFICE.COM
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.04.9911190341190.349-200000@aviation.net> from
"Mixter" at Nov 19, 99 03:59:00 am
> Taking a guess, I would say that the panic is caused by instability of
> the linux select() implementation, and could therefore be abused in other
> programs that manage an unlimited amount of connections using the select
> syscall.
its an old bug in 2.0 kernels with garbage collection on Unix domain sockets
if you bumped the number up above the default. I believe 2.2 (certainly
all modern 2.2) and 2.3 should be immune to this.
Alan
