[Secure-testing-team] kernel allows loadkeys to be used by any user, allowing for local root compromise

Moritz Muehlenhoff jmm at inutil.org
Tue Oct 18 21:19:53 UTC 2005

Previous message: [Secure-testing-team] Re: kernel allows loadkeys to be used by any user, allowing for local root compromise
Next message: [Secure-testing-team] Adding signatures to the public key of the archive
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Horms wrote:
> > The non-suid command "loadkeys" can be used by any local user having
> > console access. It does not just apply to the current virtual console
> > but to all virtual consoles and its effect persists even after logout.

This has been assigned CAN-2005-3257.

Cheers,
        Moritz

Previous message: [Secure-testing-team] Re: kernel allows loadkeys to be used by any user, allowing for local root compromise
Next message: [Secure-testing-team] Adding signatures to the public key of the archive
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Secure-testing-team mailing list