Re: FreeBSD Security Advisory FreeBSD-SA-03:09.signal

From: Jason Dambrosio (jason_at_wiz.cx)
Date: 08/11/03

  • Next message: Bruce M Simpson: "Re: FreeBSD Security Advisory FreeBSD-SA-03:09.signal" 
    Date: Sun, 10 Aug 2003 20:33:16 -1000
To: FreeBSD Security Advisories <security@freebsd.org>

    On Sun, Aug 10, 2003 at 07:57:06PM -0700, FreeBSD Security Advisories wrote:
    > II. Problem Description
    >
    > Some mechanisms for causing a signal to be sent did not properly
    > validate the signal number, in some cases allowing the kernel to
    > attempt to deliver a negative or out-of-range signal number. Such
    > errors were present in the ptrace(2) system call and the `spigot'
    > video capture device driver.
    >
    > The error in ptrace(2) was introduced in FreeBSD version 4.2-RELEASE
    > (4-STABLE dated Oct 26 04:34:41 2000 UTC).

    ...

    > IV. Workaround
    >
    > There is no workaround for the local denial-of-service attack.

        Wouldn't a possible workaround be, to load a kld module that would
    replace the ptrace(2) system call with a patched one? I remember doing
    such a trick for modifying other system calls using kld modules...

    Jason
    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

  • Next message: Bruce M Simpson: "Re: FreeBSD Security Advisory FreeBSD-SA-03:09.signal"

    Relevant Pages

    • Re: My Application detected as Virus by some Anti virus software
      ... company and tell them your program is causing a false positive. ... they'll ask for a copy of your program so they can validate your claim and ... Another good idea is to have your *users* notify the AV company to tell them ... many users more than the software manufacturer when it comes to false ...
      (microsoft.public.vc.mfc)
    • Re: Workqueues in Ada
      ... This will also serve to validate that it's the dynamic nature of ... Doubly_Linked_Lists that is causing the problem. ...
      (comp.lang.ada)
    • Re: How can I use Media Player 11 in a School??
      ... Why can't they validate? ... What am I missing about your scenario that is causing them not to be able to ... See http://zachd.com/pss/pss.html for some helpful WMP info. ... by an administrator. ...
      (microsoft.public.windowsmedia.player)
    • Re: ereg question
      ... the escaped period is causing me a lot of grief. ... ..but does not validate umlaut-domains or top level domains like .museum ...
      (comp.lang.php)
    • Re: I sense a whiff of doubt
      ... climate you doubt or just what mechanisms are causing it? ...
      (uk.sci.weather)