From owner-freebsd-security@FreeBSD.ORG  Fri May  6 16:03:13 2011
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B6F581065675
	for <freebsd-security@freebsd.org>;
	Fri,  6 May 2011 16:03:13 +0000 (UTC)
	(envelope-from utisoft@gmail.com)
Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com
	[209.85.214.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 3D1A38FC21
	for <freebsd-security@freebsd.org>;
	Fri,  6 May 2011 16:03:13 +0000 (UTC)
Received: by bwz12 with SMTP id 12so3825099bwz.13
	for <freebsd-security@freebsd.org>;
	Fri, 06 May 2011 09:03:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:reply-to:date:message-id:subject
	:from:to:cc:content-type;
	bh=P+xVt+wYZn9iE3pkuJ5osZPv6EbxEXUjonlMXMKykBk=;
	b=nON8IguYNu2RRHssvgYuWq4E7gTLA9PmuuFeq6xUHVX0ne+g8GQYiH2AR9+GNI+E4B
	9qzWk4zp+y8MZvvSe2cistUefQe6NO8hCvyMgz294BFKVUTpivVGT6gjq4DHGmvbZu/w
	Dq39RVBZGkDNZSZY1M79eaOOUCjl5w2hzsIec=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:reply-to:date:message-id:subject:from:to:cc
	:content-type;
	b=kCUJcdAcnJhOPUrzqwV8G2rXCWXiMoPj0kdURBaNS+xPhvQQ+/4cMR479zKeSrmuQ4
	ZU610+g4lqjzNHjdoBj36b+ZCNNHkVME4aWx3cNl+ONsoKMF+8s+Ly6T53lyuKAltuRY
	JXJxhGWRIsG/Hwo8555Mb2EEfF8IFlP3z7IWo=
MIME-Version: 1.0
Received: by 10.204.81.203 with SMTP id y11mr94735bkk.124.1304696314527; Fri,
	06 May 2011 08:38:34 -0700 (PDT)
Received: by 10.204.42.21 with HTTP; Fri, 6 May 2011 08:38:34 -0700 (PDT)
Received: by 10.204.42.21 with HTTP; Fri, 6 May 2011 08:38:34 -0700 (PDT)
Date: Fri, 6 May 2011 16:38:34 +0100
Message-ID: <BANLkTik5dxFTiP+gHAhPJuRUoEsUWzEE4g@mail.gmail.com>
From: Chris Rees <utisoft@gmail.com>
To: Daniel Jacobsson <daniel.jacobsson.90@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-security@freebsd.org
Subject: =?iso-8859-1?q?Re=3A_Rooting_FreeBSD_=2C_Privilege_Escalation_us?=
	=?iso-8859-1?q?ing_Jails_=28P=E9tur=29?=
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: utisoft@gmail.com
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 May 2011 16:03:13 -0000

On 6 May 2011 16:27, "Daniel Jacobsson" <daniel.jacobsson.90@gmail.com>
wrote:
>
> Daniel Jacobsson skrev 2011-05-06 17:05:
>>
>> I read this (http://www.petur.eu/blog/?p=459) blog post today. It's about
that a remote user with root privilegs to a FreeBSD jail & user privileges
to the jails host machine can obtain root privileges on the host machine.
>> Can someone confirm if this bugg/exploit works?
>
> Ah, think i found an old post (
http://freebsd.1045724.n5.nabble.com/Thoughts-on-jail-privilege-FAQ-submission-td4219099.html)
about this subject, so it seems to be old news.

Oops, looks like I broke my promise to make a doc entry...

Thanks for reminding me!

Chris