Date: Fri, 8 Mar 2002 10:46:32 -0600
From: Avery Buffington <[email protected]>
To: [email protected]Subject: linux <=2.4.18 x86 traps.c problem
------=_NextPart_000_0012_01C1C68E.EA5773A0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
I've read a litte about a x86 specific bug discoverd by Stephan Springl
related to the iBCS code in arch/i386/kernel/traps.c
which allows a user to exploit the iBCS interface and kill processes not
belonging to them. The openwall site has a tiny blurb about it and I've
seen it mentioned on the gresecurity mailing list, but I can't seem to
find any other information about it. Does anyone else know more about
the details of this?
thanks,
-avery
------=_NextPart_000_0012_01C1C68E.EA5773A0
Content-Type: application/x-pkcs7-signature;
name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="smime.p7s"
MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIFxDCCAoQw
ggHtoAMCAQICAwZ1azANBgkqhkiG9w0BAQIFADCBkjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdl
c3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsT
FENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAw
MC44LjMwMB4XDTAyMDEwNzIxMDYzNloXDTAzMDEwNzIxMDYzNlowRzEfMB0GA1UEAxMWVGhhd3Rl
IEZyZWVtYWlsIE1lbWJlcjEkMCIGCSqGSIb3DQEJARYVYXZlcnlAZnVuZHN4cHJlc3MuY29tMIGf
MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/jAmL7CVNSSDu2DnZEv75qZqwclapXNWv0oBZxf61
7YAiKA/fa++lr35N1GnTPGKCSPRxudFUcn7uwB7EbA7Lwu3Q7ezGvOXVtMkBMB7wX/G44ALnEndN
usIiVlY635vlDLx5SO7GklTNFeNRbQC6jRAwTqDQd3eiUbluKoBFawIDAQABozIwMDAgBgNVHREE
GTAXgRVhdmVyeUBmdW5kc3hwcmVzcy5jb20wDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQIFAAOB
gQCUTA0CypMSK8BJu66lFSNz57NMrLgJDY+OfXgoqCcdvo6kZ7zMpJ92Jliygv6FSoCv2fODTZe0
C6GWrB9xe5V7TVgx+yuLxWFdOqIh7kpZXNOfrZBP4f5XebS+C/gHq3qWsxdX68oJqoezFM9xKtZ0
GgckOc88E+9pDve7YWb46jCCAzgwggKhoAMCAQICEGZFcrfMdPXPY3ZFhNAukQEwDQYJKoZIhvcN
AQEEBQAwgdExCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNh
cGUgVG93bjEaMBgGA1UEChMRVGhhd3RlIENvbnN1bHRpbmcxKDAmBgNVBAsTH0NlcnRpZmljYXRp
b24gU2VydmljZXMgRGl2aXNpb24xJDAiBgNVBAMTG1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBD
QTErMCkGCSqGSIb3DQEJARYccGVyc29uYWwtZnJlZW1haWxAdGhhd3RlLmNvbTAeFw0wMDA4MzAw
MDAwMDBaFw0wNDA4MjcyMzU5NTlaMIGSMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBD
YXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xDzANBgNVBAoTBlRoYXd0ZTEdMBsGA1UECxMUQ2VydGlm
aWNhdGUgU2VydmljZXMxKDAmBgNVBAMTH1BlcnNvbmFsIEZyZWVtYWlsIFJTQSAyMDAwLjguMzAw
gZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAN4zMqZjxwklRT7SbngnZ4HF2ogZgpcO40QpimM1
Km1wPPrcrvfudG8wvDOQf/k0caCjbZjxw0+iZdsN+kvx1t1hpfmFzVWaNRqdknWoJ67Ycvm6AvbX
sJHeHOmr4BgDqHxDQlBRh4M88Dm0m1SKE4f/s5udSWYALQmJ7JRr6aFpAgMBAAGjTjBMMCkGA1Ud
EQQiMCCkHjAcMRowGAYDVQQDExFQcml2YXRlTGFiZWwxLTI5NzASBgNVHRMBAf8ECDAGAQH/AgEA
MAsGA1UdDwQEAwIBBjANBgkqhkiG9w0BAQQFAAOBgQAxsUtHXfkBceX1U2xdedY9mMAmE2KBIqcS
+CKV6BtJtyd7BDm6/ObyJOuR+r3sDSo491BVqGz3Da1MG7wD9LXrokefbKIMWI0xQgkRbLAaadEr
ErJAXWr5edDqLiXdiuT82w0fnQLzWtvKPPZE6iZph39Ins6ln+eE2MliYq0FxjGCApswggKXAgEB
MIGaMIGSMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBl
IFRvd24xDzANBgNVBAoTBlRoYXd0ZTEdMBsGA1UECxMUQ2VydGlmaWNhdGUgU2VydmljZXMxKDAm
BgNVBAMTH1BlcnNvbmFsIEZyZWVtYWlsIFJTQSAyMDAwLjguMzACAwZ1azAJBgUrDgMCGgUAoIIB
VjAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0wMjAzMDgxNjQ5MjZa
MCMGCSqGSIb3DQEJBDEWBBScSCd+asjzpuLWChtKpp5qBAUkszBJBgkqhkiG9w0BCQ8xPDA6MAoG
CCqGSIb3DQMHMA4GCCqGSIb3DQMCAgIAgDAHBgUrDgMCBzAHBgUrDgMCGjAKBggqhkiG9w0CBTCB
qwYJKwYBBAGCNxAEMYGdMIGaMIGSMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBDYXBl
MRIwEAYDVQQHEwlDYXBlIFRvd24xDzANBgNVBAoTBlRoYXd0ZTEdMBsGA1UECxMUQ2VydGlmaWNh
dGUgU2VydmljZXMxKDAmBgNVBAMTH1BlcnNvbmFsIEZyZWVtYWlsIFJTQSAyMDAwLjguMzACAwZ1
azANBgkqhkiG9w0BAQEFAASBgKVWYvoZ39uHnee1E5QSjl2tlKlmCYV1Nz/y4H8EQJ4Gum21tTF1
w8fwjEvG1viUafhTrTrw6Cb39WYiEvBhl2AHOf2kdkxt+EpumZ2mvujhHNiEtMc+2JsuDdcGrsrW
64XQ7+HCpYfXlvajFatBh4pKv0systSd/HZ+1vzDJMbTAAAAAAAA
------=_NextPart_000_0012_01C1C68E.EA5773A0--