Full Disclosure mailing list archives

Linux Local Root -- CVE-2012-0056 -- Detailed Write-up

From: "Jason A. Donenfeld" <Jason () zx2c4 com>
Date: Sun, 22 Jan 2012 19:19:41 +0100

Hey Everyone,

I did a detailed write-up on exploiting CVE-2012-0056 that some of
y'all might appreciate. Pretty fun bug to play with -- dup2ing all
over the place for the prize of getting to write arbitrary process
memory into su :-).

The write up is available on my blog here: http://blog.zx2c4.com/749 . Enjoy.

Jason

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 22)
- Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 22)
  - Message not available
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 22)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up sd (Jan 22)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 22)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 23)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up sd (Jan 23)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 23)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 23)
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up sd (Jan 24)
    - Message not available
    - Re: Linux Local Root -- CVE-2012-0056 -- Detailed Write-up Jason A. Donenfeld (Jan 24)

(Thread continues...)