From owner-freebsd-stable  Wed Aug 12 14:16:45 1998
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA12736
          for freebsd-stable-outgoing; Wed, 12 Aug 1998 14:16:45 -0700 (PDT)
          (envelope-from owner-freebsd-stable@FreeBSD.ORG)
Received: from sequoia.lituus.fr (dij8-159.abo.wanadoo.fr [193.252.183.159])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA12731
          for <FreeBSD-stable@FreeBSD.ORG>; Wed, 12 Aug 1998 14:16:42 -0700 (PDT)
          (envelope-from root@smtp.wanadoo.fr)
Received: (from root@localhost)
	by sequoia.lituus.fr (8.9.1/8.8.8) id XAA00425;
	Wed, 12 Aug 1998 23:05:27 +0200 (CEST)
	(envelope-from root)
Date: Wed, 12 Aug 1998 23:05:27 +0200 (CEST)
Message-Id: <199808122105.XAA00425@sequoia.lituus.fr>
From: Stephane Legrand <stephane@lituus.fr>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
To: FreeBSD-stable@FreeBSD.ORG
Subject: Huge Bug in FreeBSD not fixed?
In-Reply-To: <Pine.BSF.4.02.9808110025020.216-200000@SchematiX.net>
References: <Pine.BSF.4.02.9808110025020.216-200000@SchematiX.net>
X-Mailer: VM 6.34 under 20.3 "Vatican City" XEmacs  Lucid
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Scott writes:
 > I ran across this bug a while back on rootshell, and then again by a user
 > on IRC who offered to take down my box. Soon after that, the bug was fixed
 > and things were fine. But just out of boredom, i decided to run the
 > exploit again. Sure enough, i had a kernel panic and that was it. All of
 > this from a normal user account. The bug has reoccured recently and may
 > cause problems on my server if the users find out about the vulnerability.
 > 
 > I am running FreeBSD 2.2.7-STABLE (Last compiled on August 5th early in
 > the morning). The system is running on a PII233 with 64MB RAM. This bug
 > REALLY needs to be fixed ASAP.
 > 
 > I would like to know if other systes are vulnerable as well. I discussed
 > this matter on IRC and everyone said they had similar problems. This bug
 > needs to be addressed soon. I would HATE switching to linux because my
 > system keeps crashing.
 > 

Just for information, this piece of code perfectly crash my freebsd
current box. I must to specify that the "/etc" directory hasn't been
updated to current one except for the "rc.conf" file.
But it shows that this bug doesn't belong only to stable version.


Stephane Legrand.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message