Re: iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPIN

看板FB_security作者時間19年前 (2006/10/11 07:02), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串1/5 (看更多)
Bill Moran wrote: > This report seems pretty vague. I'm unsure as to whether the alleged > "bug" gives the user any more permissions than he'd already have? Anyone > know any details? This is a local denial of service bug, which was fixed 6 weeks ago in HEAD and RELENG_6. There is no opportunity for either remote denial of service or any privilege escalation. > VI. VENDOR RESPONSE > > "The policy of the FreeBSD Security Team is that local denial of service > bugs not be treated as security issues; it is possible that this problem > will be corrected in a future Erratum." If there was any potential for (a) privilege escalation, (b) disclosure of potentially sensitive information, or (c) denial of service by a non-authenticated attacker, we would have issued a security advisory. Colin Percival _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 cperciva. 的文章
文章代碼(AID): #15B2Pj00 (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 1 之 5 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共5篇)
更多 cperciva. 的文章
文章代碼(AID): #15B2Pj00 (FB_security)