[11578] in bugtraq
Re: FreeBSD (and other BSDs?) local root explot
daemon@ATHENA.MIT.EDU (Stas Kisel)
Sun Aug 29 03:27:01 1999
Message-Id: <199908261619.UAA03774@sonet.crimea.ua>
Date: Thu, 26 Aug 1999 20:19:43 +0400
Reply-To: Stas Kisel <stas@SONET.CRIMEA.UA>
From: Stas Kisel <stas@SONET.CRIMEA.UA>
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
> From: Przemyslaw Frasunek <secure@FREEBSD.LUBLIN.PL>
> Subject: FreeBSD (and other BSDs?) local root explot
> fix:
> - limit root's coredump size
> - patch libc
For those who did not read bugtraq closely: the patch is available
at http://sonet.crimea.ua/fts_patch/fts_patch
and it was posted earlier under subject "fts, du, find"
PS. I did not checked, but I'm pretty sure that skipped program
exploits that bug.
\bye
Stas
