Re: rPSA-2006-0122-1 kernel

To: "Justin M. Forbes" <jmforbes@xxxxxxxxx>
Subject: Re: rPSA-2006-0122-1 kernel
From: Paul Starzetz <paul@xxxxxxxxxxx>
Date: Mon, 10 Jul 2006 11:36:00 +0200
Cc: security-announce@xxxxxxxxxxxxxxx, update-announce@xxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, lwn@xxxxxxx
In-reply-to: <200607071921.k67JLlRR029822@xxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <200607071921.k67JLlRR029822@xxxxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.12) Gecko/20050920

Justin M. Forbes wrote:

Description:
   Previous versions of the kernel package are vulnerable to two denial
   of service attacks.  The first allows any local user to fill up file
   systems by causing core dumps to write to directories to which they
   do not have write access permissions.  The second applies only to

I really wonder why in the recent past there is a tendence to declaresuch things as "denial of service" etc - while they are perfect rootbackdoors / vulns


*B000M* you are in one minut^K^K^Ke later...

Maybe this is just to hide the overall bad quality of the 2.6 kernelcode? *just guessing*

Anyway CVE-2006-2451 is trivially exploitable so I don't attach anyexploit code since it is obvious...


Paul Starzetz

References:
- rPSA-2006-0122-1 kernel
  - From: Justin M. Forbes

Prev by Date: ERNW Security Advisory 02/2006 - Buffer Overflow in sipXtapi (used in AOL Triton)
Next by Date: [ECHO_ADV_37$2006] pc_cookbook Mambo/Joomla Component <= v0.3 Remote File Include Vulnerabilities
Previous by thread: rPSA-2006-0122-1 kernel
Next by thread: Format string bug in Sparklet 0.9.4try3
Index(es):
- Date
- Thread