Linux kernel 2.6.17.4ÓÐÖØ´óȨÏÞ©¶´

À´Ô´£ºsolidot

seclists.orgÍøÕ¾ÉϹ«²¼ÁËÒ»¸öΣÏյĩ¶´£¬Ëü´æÔÚÓÚkernel 2.6.17.4ÖС£ÆÕͨÓû§¿ÉÒÔÔÚ¶ÁÈë´óÎļþµÄʱºò»ñµÃrootȨÏÞ¡£ÕâÊÇÔ­ÎÄÒÔ¼°Ô­Àí£¬²¢¸½´øÓвâÊÔ´úÂë¡£¿´ÉÏÈ¥£¬ËƺõÈÃmmapÌî³ä¶ÁÈëµÄ´óÎļþʱ£¬ÈÃϵͳµÄËٶȷÅÂý£¬´Ó¶øÓÐʱ¼ä½Ø»ñϵͳ¶ÔÓÚ/proc/self/environÉèsetuid bit£¬»ñµÃrootȨÏÞ¡£


Ïê¼û£º


http://seclists.org/lists/fulldisclosure/2006/Jul/0312.html