oss-sec mailing list archives

Re: CVE-2014-4699: Linux ptrace bug

From: Solar Designer <solar () openwall com>
Date: Sun, 6 Jul 2014 00:20:14 +0400

On Sat, Jul 05, 2014 at 09:58:15PM +0200, Yves-Alexis Perez wrote:

And the system is usable after that.


Yet both are vulnerable, with privilege escalation likely possible.

Alexander

Current thread:

CVE-2014-4699: Linux ptrace bug Andy Lutomirski (Jul 04)
- Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 04)
- Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 05)
  - Re: CVE-2014-4699: Linux ptrace bug Yves-Alexis Perez (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Yves-Alexis Perez (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Yves-Alexis Perez (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 05)
  - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Andy Lutomirski (Jul 08)
    - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 08)
  - Re: CVE-2014-4699: Linux ptrace bug Yves-Alexis Perez (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug Marc Deslauriers (Jul 05)
    - Re: CVE-2014-4699: Linux ptrace bug John Johansen (Jul 06)
    - Re: CVE-2014-4699: Linux ptrace bug Solar Designer (Jul 06)
    - Re: CVE-2014-4699: Linux ptrace bug John Johansen (Jul 06)

(Thread continues...)