kernel: multiple vulnerabilities
Posted Sep 23, 2005 6:50 UTC (Fri) by zblaxell
Parent article: kernel: multiple vulnerabilities
Herbert Xu discovered that the setsockopt() function was not restricted to privileged users.
Uhhh..."socket policy loading" (IP_IPSEC_POLICY) is what is restricted. setsockopt() is the user-space interface to IP_IPSEC_POLICY but setsockopt() can do many other things, several of which are useful for non-privileged users.
to post comments)