oss-sec mailing list archives
Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra
From: Graham Christensen <graham () grahamc com>
Date: Thu, 12 Oct 2017 08:12:59 -0400
One follow-up for the discussion on if this is a DoS or privilege escalation, in the logs we saw: Service exited due to signal: Killed: 9 sent by nix-daemon[54108] and were able to (inconsistently) reproduce this with other unprivileged users. This indicated to us that we hadn’t tripped just a crashing bug, but actually escalated beyond the normal access control protections of kill. Graham
Current thread:
- Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Shea Levy (Oct 11)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Kurt Seifried (Oct 11)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Hunger (Oct 12)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Roman Medina-Heigl Hernandez (Oct 12)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Hunger (Oct 12)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Graham Christensen (Oct 12)
- Re: Privilege escalation with kill(-1, SIGKILL) in XNU kernel of macOS High Sierra Kurt Seifried (Oct 11)