Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
BID:12168
Info
Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
| Bugtraq ID: | 12168 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 05 2005 12:00AM |
| Updated: | Jan 05 2005 12:00AM |
| Credit: | Mitchell Blank Jr <[email protected]> disclosed this vulnerability. |
| Vulnerable: |
Redhat Fedora Core3 Redhat Fedora Core2 Linux kernel 2.6.10 rc2 Linux kernel 2.6.9 Linux kernel 2.6.8 rc3 Linux kernel 2.6.8 rc2 Linux kernel 2.6.8 rc1 Linux kernel 2.6.8 Linux kernel 2.6.7 rc1 Linux kernel 2.6.7 Linux kernel 2.6.6 rc1 Linux kernel 2.6.6 Linux kernel 2.6.5 Linux kernel 2.6.4 Linux kernel 2.6.3 Linux kernel 2.6.2 Linux kernel 2.6.1 -rc2 Linux kernel 2.6.1 -rc1 Linux kernel 2.6.1 Linux kernel 2.6 -test9-CVS Linux kernel 2.6 -test9 Linux kernel 2.6 -test8 Linux kernel 2.6 -test7 Linux kernel 2.6 -test6 Linux kernel 2.6 -test5 Linux kernel 2.6 -test4 Linux kernel 2.6 -test3 Linux kernel 2.6 -test2 Linux kernel 2.6 -test11 Linux kernel 2.6 -test10 Linux kernel 2.6 -test1 Linux kernel 2.6 |
| Not Vulnerable: |
Linux kernel 2.6 .10 |
Discussion
Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
It is reported that in certain cases, the Linux kernel fails to properly call defined security module functions in its SCM system.
This vulnerability may allow local attackers to bypass the expected security measures when passing file descriptors. The exact results of this vulnerability depend on the implementation of applications that utilize file descriptor passing. It is conjectured that this may result in open file descriptors being passed to processes that would not normally be able to access them. This may lead to attackers gaining access to read or modify files that would normally be denied to them.
This vulnerability is reported to exist in the Linux kernel in the 2.6 series, in versions prior to 2.6.10.
It is reported that in certain cases, the Linux kernel fails to properly call defined security module functions in its SCM system.
This vulnerability may allow local attackers to bypass the expected security measures when passing file descriptors. The exact results of this vulnerability depend on the implementation of applications that utilize file descriptor passing. It is conjectured that this may result in open file descriptors being passed to processes that would not normally be able to access them. This may lead to attackers gaining access to read or modify files that would normally be denied to them.
This vulnerability is reported to exist in the Linux kernel in the 2.6 series, in versions prior to 2.6.10.
Exploit / POC
Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
Solution:
Red Hat Linux has released advisories FEDORA-2004-581, and FEDORA-2004-582 to address this, and other issues for Fedora Core 2, and 3 respectively. Please see the referenced advisories for further information.
The vendor has released version 2.6.10 of the Linux kernel to address this issue:
Linux kernel 2.6 -test10
Linux kernel 2.6 -test6
Linux kernel 2.6 -test1
Linux kernel 2.6 -test4
Linux kernel 2.6 -test7
Linux kernel 2.6 -test9-CVS
Linux kernel 2.6
Linux kernel 2.6 -test9
Linux kernel 2.6 -test2
Linux kernel 2.6 -test3
Linux kernel 2.6 -test8
Linux kernel 2.6 -test11
Linux kernel 2.6 -test5
Linux kernel 2.6.1 -rc1
Linux kernel 2.6.1 -rc2
Linux kernel 2.6.1
Linux kernel 2.6.10 rc2
Linux kernel 2.6.2
Linux kernel 2.6.3
Linux kernel 2.6.4
Linux kernel 2.6.5
Linux kernel 2.6.6
Linux kernel 2.6.6 rc1
Linux kernel 2.6.7
Linux kernel 2.6.7 rc1
Linux kernel 2.6.8 rc1
Linux kernel 2.6.8 rc3
Linux kernel 2.6.8
Linux kernel 2.6.8 rc2
Linux kernel 2.6.9
Solution:
Red Hat Linux has released advisories FEDORA-2004-581, and FEDORA-2004-582 to address this, and other issues for Fedora Core 2, and 3 respectively. Please see the referenced advisories for further information.
The vendor has released version 2.6.10 of the Linux kernel to address this issue:
Linux kernel 2.6 -test10
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test6
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test4
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test7
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test9-CVS
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test9
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test2
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test3
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test8
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test11
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6 -test5
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.1 -rc1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.1 -rc2
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.10 rc2
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.2
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.3
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.4
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.5
-
Fedora kernel-2.6.9-1.11_FC2.i586.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-2.6.9-1.11_FC2.i686.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-2.6.9-1.11_FC2.x86_64.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-debuginfo-2.6.9-1.11_FC2.i586.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-debuginfo-2.6.9-1.11_FC2.i686.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-debuginfo-2.6.9-1.11_FC2.x86_64.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-doc-2.6.9-1.11_FC2.noarch.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-smp-2.6.9-1.11_FC2.i586.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-smp-2.6.9-1.11_FC2.i686.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-smp-2.6.9-1.11_FC2.x86_64.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Fedora kernel-sourcecode-2.6.9-1.11_FC2.noarch.rpm
RedHat Fedora Core 2
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ -
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.6
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.6 rc1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.7
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.7 rc1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.8 rc1
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.8 rc3
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.8
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.8 rc2
-
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
Linux kernel 2.6.9
-
Fedora kernel-2.6.9-1.724_FC3.i586.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-2.6.9-1.724_FC3.i686.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-2.6.9-1.724_FC3.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-debuginfo-2.6.9-1.724_FC3.i586.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-debuginfo-2.6.9-1.724_FC3.i686.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-debuginfo-2.6.9-1.724_FC3.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-doc-2.6.9-1.724_FC3.noarch.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-smp-2.6.9-1.724_FC3.i586.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-smp-2.6.9-1.724_FC3.i686.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Fedora kernel-smp-2.6.9-1.724_FC3.x86_64.rpm
RedHat Fedora Core 3
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ -
Linux linux-2.6.10.tar.bz2
http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.10.tar.bz2
References
Linux Kernel Local File Descriptor Passing Security Module Bypass Vulnerability
References:
References:
- kernel.org Homepage. (Linux Kernel)
- Linux Kernel 2.6.10 Change Log (Linux Kernel)