On Wed, 19 Sep 2007 09:19:50 +0200 majkls <[EMAIL PROTECTED]> wrote: > Hello, > here is an fix to an exploit (obtained somewhere in internet). This > exploit can workaround chroot with CAP_SYS_CHROOT. It is also possible > (with sufficient filedescriptor (if there is na directory fd opened in > root) workaround chroot with sys_fchdir. This patch fixes it.
If you have the ability to use chroot() you are root. If you are root you can walk happily out of any chroot by a thousand other means. Alan - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
