2008-02-18
Security issue: check and upgrade your kernel !
Two major security flaws in the Linux kernel were reported last weekend. Both flaws have the same impact (root access for local users) and both exist within the vmsplice() system call, which was added to the kernel in 2.6.17. There is no configuration option to exclude vmsplice() so everyone is vulnerable.
That’s not directly related to sshproxy but ssh is the perfect protocol to use a local exploit based on privilege granting. So since sshproxy is used to administrate servers via ssh, you have to know that any server could be easily vulnerable and a normal user could become root.
- Type: root access for local users
- Vulnerable: kernel 2.6.[17->24.1].
- Exploit: http://www.milw0rm.com/exploits/5092