kernel: several vulnerabilities
Posted Aug 23, 2007 11:57 UTC (Thu) by nix
Parent article: kernel: several vulnerabilities
No: 2.4.35 and kernels before 184.108.40.206 allow local users to send such signals by causing a *non-privileged*, attacker-controlled parent process to die: before dying it forks, sets the parent process death signal and kicks off a setuid child.
Now when it dies it hits the setuid *child* with whatever signal it chose.
to post comments)