OpenVZ Forum


Home » General » Support » *CLOSED* Security breach :: prctl vulnerability
Re: Security breach :: VPS owner break into main node!!!! [message #7538 is a reply to message #7480] Tue, 17 October 2006 10:46 Go to previous message
dev is currently offline  dev
Messages: 1693
Registered: September 2005
Location: Moscow
Senior Member
2.6.8 stable is not vulnerable since prctl was broken between 2.6.8 and 2.6.9.

2.6.9 stable was updated some time ago (linux-2.6.9-CVE-2006-2451-dumpable.patch)

Plus as someone already noted here, this doesn't allow to get HWN root user. Only VE root.

http://static.openvz.org/userbars/openvz-developer.png

Report message to a moderator

[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: dual nic environment
Next Topic: Problem with 0.18.1 and kmemsize
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Mon Sep 08 23:32:56 GMT 2025

Total time taken to generate the page: 0.07227 seconds
Powered by FUDforum Powered by Virtuozzo Containers