Re: Fwd: Registration Weakness in Linux Kernel's Binary formats

From: endrazine <endrazine@xxxxxxxxx>
Date: Tue, 03 Oct 2006 23:53:49 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,
I can't say if the vulnerability is real,
but I do know pdfs are _unsafe_ those days...

Regards,

endrazine-

Bráulio Oliveira wrote:

Just forwarding....

---------- Forwarded message ---------- From: SHELLCODE Security
Research <GoodFellas@xxxxxxxxxxxxxxxx> Date: Oct 3, 2006 4:13 PM
Subject: Registration Weakness in Linux Kernel's Binary formats To:
undisclosed-recipients

Hello, The present document aims to demonstrate a design weakness
found in the handling of simply linked lists used to
register binary formats handled by Linux kernel, and
affects all the kernel families (2.0/2.2/2.4/2.6), allowing
the insertion of infection modules in kernel space that can be
used by malicious users to create infection tools, for example
rootkits.

POC, details and proposed solution at: English version:
http://www.shellcode.com.ar/docz/binfmt-en.pdf Spanish version:
http://www.shellcode.com.ar/docz/binfmt-es.pdf

regards, -- SHELLCODE Security Research TEAM
GoodFellas@xxxxxxxxxxxxxxxx http://www.shellcode.com.ar

- To unsubscribe from this list: send the line "unsubscribe
linux-kernel" in the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/ - To unsubscribe
from this list: send the line "unsubscribe linux-kernel" in the
body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info
at http://vger.kernel.org/majordomo-info.html Please read the FAQ
at http://www.tux.org/lkml/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFItvszX6JtL3KgRURAq6xAJ4pXYuqjAwxOY8H+/yU5WhRmBDVVgCgnwNr
JusXDby1dLMzAR/t4/mKf1c=
=3tmT
-----END PGP SIGNATURE-----

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

References:
- Fwd: Registration Weakness in Linux Kernel's Binary formats
  - From: Bráulio Oliveira

Prev by Date: Re: wpa supplicant/ipw3945, ESSID last char missing
Next by Date: Re: Registration Weakness in Linux Kernel's Binary formats
Previous by thread: Fwd: Registration Weakness in Linux Kernel's Binary formats
Next by thread: Re: Registration Weakness in Linux Kernel's Binary formats
Index(es):
- Date
- Thread

Relevant Pages

Re: [2.6.16rc2] compile error
... To unsubscribe from this list: ... More majordomo info at http://vger.kernel.org/majordomo-info.html ... Please read the FAQ at http://www.tux.org/lkml/ ... Copyright 2006 by Maurice Eugene Heskett, ...
(Linux-Kernel)
Re: [patch 0/14] s3c2412/s3c2413 support
... implementations. ... To unsubscribe from this list: ... Please read the FAQ at http://www.tux.org/lkml/ ... More majordomo info at http://vger.kernel.org/majordomo-info.html ...
(Linux-Kernel)
Re: Suspend to RAM generates oops and general protection fault
... he said it looked like a CPU hotplug ... To unsubscribe from this list: ... More majordomo info at http://vger.kernel.org/majordomo-info.html ... Please read the FAQ at http://www.tux.org/lkml/ ...
(Linux-Kernel)
Re: potential security issue
... Please provide me with a PGP key. ... To unsubscribe from this list: ... More majordomo info at http://vger.kernel.org/majordomo-info.html ... Please read the FAQ at http://www.tux.org/lkml/ ...
(Linux-Kernel)