oss-sec mailing list archives
Re: CVE-2016-7545 -- SELinux sandbox escape
From: Jakub Wilk <jwilk () jwilk net>
Date: Thu, 29 Sep 2016 12:32:10 +0200
* Christos Zoulas <christos () zoulas com>, 2016-09-26, 13:53:
On the BSDs TIOCSTI has been limited to the superuser since the 4.4BSD Lite 2 release in 1995 (IIRC).
Hmm. I've just tried OpenBSD 5.7 and FreeBSD 10.3, and TIOCSTI works fine for non-root users.
-- Jakub Wilk
Current thread:
- CVE-2016-7545 -- SELinux sandbox escape up201407890 (Sep 25)
- Re: CVE-2016-7545 -- SELinux sandbox escape Jakub Wilk (Sep 26)
- Re: CVE-2016-7545 -- SELinux sandbox escape John Haxby (Sep 26)
- Re: CVE-2016-7545 -- SELinux sandbox escape up201407890 (Sep 26)
- Re: CVE-2016-7545 -- SELinux sandbox escape Christos Zoulas (Sep 26)
- Re: CVE-2016-7545 -- SELinux sandbox escape Jakub Wilk (Sep 29)
- Re: CVE-2016-7545 -- SELinux sandbox escape Christos Zoulas (Sep 29)
- Re: CVE-2016-7545 -- SELinux sandbox escape Jakub Wilk (Sep 26)