Re: [Full-disclosure] Linux kernel source archive vulnerable

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Linux kernel source archive vulnerable

Subject: Re: [Full-disclosure] Linux kernel source archive vulnerable
Date: Fri, 8 Sep 2006 08:09:51 +0200 (CEST)
From: Christine Kronberg <suppressed>

On Fri, 8 Sep 2006, Raj Mathur wrote:


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

"Hadmut" == Hadmut Danisch <suppressed> writes:


   Hadmut> [snip]

   Hadmut> When unpacking such an archive, tar also sets the uid,
   Hadmut> gid, and file permissions given in the tar
   Hadmut> archive. Unfortunately, plenty of files and directories in
   Hadmut> that archive are world writable. E.g. in the 2.6.17.11
   Hadmut> archive, there are 1201 world writable directories and
   Hadmut> 19554 world writable files.

I wouldn't know if something has changed drastically between 2.6.16
and 2.6.17.11, but:

suppressed:~$ find /usr/src/linux-2.6.16/ -perm -666 ! -type l
suppressed:~$

Not a single world-writable file or directory.  Perhaps pre-release
kernel tarballs are more lax?


  Seems to. I just checked linux-2.6.13 and linux-2.6.17.6. While the
  first has no world writeable files or directories at all the latter
  has tons of it. Interesting.

  Cheers,

  Chris Kronberg.

Prev by Date: XHP CMS v0.5.1 Vuls Xss and Full path vuls
Next by Date: MagpieRSS (a simple RSS integration tool) Full path vul
Previous by thread: XHP CMS v0.5.1 Vuls Xss and Full path vuls
Next by thread: MagpieRSS (a simple RSS integration tool) Full path vul
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.