vserver development mailing list: [Vserver] [Advisory] chroot exploit ...

[Vserver] [Advisory] chroot exploit ...:
vserver development mailing list
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Herbert Poetzl (herbert_at_13thfloor.at)
Date: Thu 05 Feb 2004 - 23:10:46 GMT

Previous message: Tom Walsh: "RE: [Vserver] congranulations! You won $10158"
Next in thread: Tor Rune Skoglund: "Re: [Vserver] [Advisory] chroot exploit ..."
Reply: Tor Rune Skoglund: "Re: [Vserver] [Advisory] chroot exploit ..."

Dear Vserver Community!

Markus Müller from GeNUA (Germany) reported an up
to now unknown way to escape from the vserver chroot
jail, which is based on the fact the chmod did not
verify the 000 barrier correctly ...

the following patch, applied with patch -p0
fixes this issue, for stable and devel releases

http://www.13thfloor.at/vserver/security/root-escape-fix.diff

a new stable version including this fix will
be available in the next hour ...

this is a vulnerability, which allows any vserver
root user to escape the chroot() jail, and gain
access to the host server, so I would suggest to
patch/upgrade as soon as possible.

HTH,
Herbert

PS: all linux-vserver versions are affected.

_______________________________________________
Vserver mailing list
Vserver_at_list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Previous message: Tom Walsh: "RE: [Vserver] congranulations! You won $10158"
Next in thread: Tor Rune Skoglund: "Re: [Vserver] [Advisory] chroot exploit ..."
Reply: Tor Rune Skoglund: "Re: [Vserver] [Advisory] chroot exploit ..."

About this list	Date view	Thread view	Subject view	Author view	Attachment view

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Thu 05 Feb 2004 - 23:12:56 GMT by hypermail 2.1.3