Gentoo Linux -- List Archive: gentoo-hardened

Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647

List Archive: gentoo-hardened

Navigation:

Lists: gentoo-hardened: < Prev By Thread Next > < Prev By Date Next >

Headers:

To:	gentoo-hardened@g.o
From:	pageexec@...
Subject:	Re: Interesting: CVE-2012-0056
Date:	Tue, 24 Jan 2012 09:26:47 +0200

On 24 Jan 2012 at 2:35, Francesco R.(vivo) wrote:

> BTW this in "vanilla" gentoo does not work because of the permission of the su 
> file:
> ls -l /usr/bin/su
> -rws--x--x 1 root root 36776 18 gen 21.31 /usr/bin/su
> 
> readelf cannot read the address, but there can be other ways to access the 
> binary for example for group "disk"

http://seclists.org/fulldisclosure/2012/Jan/396

> hardened gentoo is un-affected as expected (but you already know)

this is not quite true, what could work against grsec is an exploit that
implemented a ret2libc style exploit coupled with bruteforcing (if the
target suid is a PIE). i hope you're all enabling the bruteforce protection
feature in grsec ;).

Replies:

Re: Interesting: CVE-2012-0056
-- Tóth Attila

References:

Interesting: CVE-2012-0056
-- Tóth Attila

Re: Interesting: CVE-2012-0056
-- Francesco R.(vivo)

Navigation:

Lists: gentoo-hardened: < Prev By Thread Next > < Prev By Date Next >

Previous by thread:

Re: Interesting: CVE-2012-0056

Next by thread:

Re: Interesting: CVE-2012-0056

Previous by date:

Re: Interesting: CVE-2012-0056

Next by date:

Re: Interesting: CVE-2012-0056

Updated Jun 28, 2012

Summary: Archive of the gentoo-hardened mailing list.

Donate to support our development efforts.