guide:Security
From Dgiref
Useful links
Vulnerabilities issues
- Kernel RedHat Vulnerabilities
according to http://kbase.redhat.com/faq/docs/DOC-18065: "The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for socket operations in proto_ops structures, which allows local users to trigger a NULL pointer dereference and gain privileges by using mmap to map page zero, placing arbitrary code on this page, and then invoking an unavailable operation, as demonstrated by the sendpage operation (sock_sendpage function) on a PF_PPPOX socket."
Solution: Red Hat Enterprise Linux 4 and 5 Add the following entries to the end of the /etc/modprobe.conf file:
install pppox /bin/true install bluetooth /bin/true install sctp /bin/true
The sctp module cannot be unloaded from a running kernel if the module is already loaded; therefore, the above changes for /etc/modprobe.conf on Red Hat Enterprise Linux 4 and 5 require a reboot to take effect.
 |
