Kernel Exploit Cause Of Debian Compromise 673
mbanck writes "The cause of the recent Debian Project server compromise has been published by the Debian security team: 'Forensics revealed a burneye encrypted exploit. Robert van der Meulen managed to decrypt the binary which revealed a kernel exploit. Study of the exploit by the RedHat and SuSE kernel and security teams quickly revealed that the exploit used an integer overflow in the brk system call. Using this bug it is possible for a userland program to trick the kernel into giving access to the full kernel address space'. This issue has been fixed in 2.4.23. Thus, the Linux kernel compromise was not Debian specific."
Shows the dangers of C (Score:4, Funny)
what kind of person... (Score:5, Funny)
Oh... (Score:1, Funny)
Userland exploits (Score:5, Funny)
Re:Hurray for the Debian Security Team! (Score:2, Funny)
Bang goes everyone's uptimes... (Score:2, Funny)
Yup (Score:5, Funny)
Well then they'd better get some help (Score:5, Funny)
You appear to be trying to write a kernel. Do you want to:
Re:Shows the dangers of C (Score:5, Funny)
Re:NEWSFLASH (Score:2, Funny)
This does not affect OpenBSD. Smart admins can sleep well tonight.
Hell, who cares, OpenBSD is dying. In fact, in Soviet Russia it's already dead...
There goes my Saturday (Score:5, Funny)
I had just convinced myself there was no compelling reason to upgrade my kernel from 2.4.22.
Actually, there still isn't, since the likelihood of my machine "coming under attack" is slight. But, what's the point of running Linux if you're not going to get all worked up over things like this ;-)
Happy make menuconfig to all!
Re:A shift of focus (Score:5, Funny)
It's fun to see how security research shifted from applications to kernels lately.
Fun!? You must be Klingon.
Re:Hmm, Methinks I've Heard this theme before (Score:5, Funny)
I'm sorry Dave, I can't do that...
Re:How did they get in to run a userspace util? (Score:5, Funny)
Or perhaps "she" sniffed a password?
I refuse to believe that the really hot, Debian-using, password-sniffing, root-exploiting geek girl is a myth.
Re:Well then they'd better get some help (Score:2, Funny)
Kicking it up a notch. (Score:5, Funny)
Pretty good if you know how to spice it right. The trick is, knowing you've got crow to eat. How's that mystery meat you're chewing on?
(there's a joke about feeding trolls to be made in this somewhere)
Up 107 days... (Score:5, Funny)
Great..... there goes my uptime.....
If I have to reboot more than once per year, I'm switching to Windows.
Re:A shift of focus (Score:5, Funny)
does this code belong to sco?
I feel your pain.... (Score:3, Funny)
17:26:24 up 168 days, 5:52, 5 users, load average: 0.70, 0.78, 1.59
D'oh. Well what to do....
--toby
Re:Up 107 days... (Score:2, Funny)
Yeah, then you only have to reboot once a day!
Re:A shift of focus (Score:2, Funny)
If only any Linux application could run on any distribution, just according to the kernel, like those exploits...
Re:A shift of focus (Score:5, Funny)
Re:Up 107 days... (Score:2, Funny)
I would have been up for 367 days today if some idiot didn't grab my server's keyboard instead of the M$ W2K box next to it to do a 3-finger-salute.
Needless to say I have disabled that "feature" now.
rock@phantom:~$ uptime
Unknown HZ value! (2) Assume 100.
16:47:42 up 256 days, 1:51, 1 user, load average: 0.00, 0.00, 0.00
Re:Shows the dangers of C (Score:5, Funny)
If you can't read your own code who else can..
Re:WHAT DID I TELL YOU TWO WEEKS AGO!?!?!? (Score:2, Funny)
Windows is not.
Window$ doesn't have a kernel; a rat's nest, maybe, but certainly not a kernel...
t_t_b
Re:A shift of focus (Score:5, Funny)
Today is a good day to get rooted.
Re:Time for better security. (Score:4, Funny)
Never EVER put these words together. It's like keeping the Bible next to the Koran. You'll never know just when they will auto-ignite!
Re:Up 107 days... (Score:2, Funny)
Re:Why aren't the using Debian Stable? (Score:2, Funny)
Re:Up 107 days... (Score:2, Funny)
Why does everyone always make fun of Windows' uptime records? I'm proud of what my GNU/Windows box can achieve. Look... That's nearly a whole day!
Re:The kernel patch... (Score:3, Funny)
I'd say someone figured it out at least a week ago [debian.org].
Patch Created September, System Rooted in November (Score:1, Funny)
Re:A shift of focus (Score:2, Funny)
Comment removed (Score:2, Funny)
Re:A shift of focus (Score:2, Funny)