[15357] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: local root on linux 2.2.15

daemon@ATHENA.MIT.EDU (der Mouse)
Thu Jun 15 15:29:22 2000

Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Message-Id:  <200006150523.BAA09764@Twig.Rodents.Montreal.QC.CA>
Date:         Thu, 15 Jun 2000 01:23:53 -0400
Reply-To: der Mouse <mouse@RODENTS.MONTREAL.QC.CA>
From: der Mouse <mouse@RODENTS.MONTREAL.QC.CA>
To: BUGTRAQ@SECURITYFOCUS.COM

Does anyone else find this as ironic as I do?  Note the lack of
checking before using the pointers returned by malloc.

> Always check the return value of system calls.  Always.  Always.
> Always.

>   header = malloc(8);
>   data = malloc(12);
>   header->pid = 0;
>   header->version = _LINUX_CAPABILITY_VERSION;
>   data->inheritable = data->effective = data->permitted = 0;

(And quite aside from that, who sez sizeof(*header) is 8, or
sizeof(*data) is 12?)

					der Mouse

			       mouse@rodents.montreal.qc.ca
		     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[15357] in bugtraq

Re: local root on linux 2.2.15

daemon@ATHENA.MIT.EDU (der Mouse)Thu Jun 15 15:29:22 2000

daemon@ATHENA.MIT.EDU (der Mouse)
Thu Jun 15 15:29:22 2000