Re: [CentOS] Serious attack vector on pkcheck ignored by Red Hat

2 Feb 2017


      On Thu, 2017-02-02 at 10:39 -0800, Gordon Messmer wrote:
...
Open a new bug report and focus on this patch, exclusively:
https://cgit.freedesktop.org/polkit/commit/src/programs/pkexec.c?id=6c992bc8...
By the way, the comment for that commit starts with:
This usage is clearly errorneous, so we should tell the users they are
making a mistake. Besides, this allows an attacker to cause a high
number of heap allocations with attacker-controlled sizes
( http://googleprojectzero.blogspot.cz/2014/08/the-poisoned-nul-byte-2014-edit... ), making some exploits easier.
Regards,
Leonard.
-- 
mount -t life -o ro /dev/dna /genetic/research

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Re: [CentOS] Serious attack vector on pkcheck ignored by Red Hat