[7128] in bugtraq
Re: Serious Linux 2.0.34 security problem
daemon@ATHENA.MIT.EDU (Theo de Raadt)
Wed Jul 1 12:13:50 1998
Date: Tue, 30 Jun 1998 12:46:56 -0600
Reply-To: Theo de Raadt <deraadt@CVS.OPENBSD.ORG>
From: Theo de Raadt <deraadt@CVS.OPENBSD.ORG>
X-To: David Luyer <luyer@UCS.UWA.EDU.AU>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Tue, 30 Jun 1998 15:10:47 +0800."
<199806300710.PAA21647@typhaon.ucs.uwa.edu.au>
> fcntl(0,F_SETOWN,p);
> s = fcntl(0,F_GETFL,0);
> fcntl(0,F_SETFL,s|O_ASYNC);
> printf("Sending SIGIO - press enter.\n");
> getchar();
> fcntl(0,F_SETFL,s&~O_ASYNC);
> printf("SIGIO send attempted.\n");
> return 0;
> }
Well, that looks like one of the class of security problems described
by www.openbsd.org/advisories/signals. Hasn't anyone else fixed those
problems yet?
