Bugtraq mailing list archives
Re: procfs hole
From: garbanzo () HOOKED NET (Alex)
Date: Sun, 10 Aug 1997 22:30:42 -0700
On Sun, 10 Aug 1997, Eivind Eklund wrote:
There is a major hole in procfs under FreeBSD 2.2.1 (2.1 is not affected, I have not tested 3.x but I believe it to be vulnerable as well) along with OpenBSD (not tested by me, but by someone else -- believe it was 2.1-RELEASE although obsd doesnt mount procfs by default like freebsd does).Temporary fix: Disable the /proc filesystem. Setting ro instead of rw in /etc/fstab or chmod'ing on the mountpoint do _not_ work. Eivind, looking for a proper fix, but not expecting to get there before David.
There was a patch released on FreeBSD-Hackers about 3 or so hours ago, that claims to fix the problem. - alex
Current thread:
- Re: procfs hole Eivind Eklund (Aug 10)
- Re: procfs hole Alex (Aug 10)