Yesterday really serious security bug was found in FreeBSD (from 7.1 to 8.0). Using public exploit local user can gain root privileges on vulnerable system. Below is an easy way solution to fix this terrible bug:
% cd /usr/src/libexec/rtld-elf/
% fetch http://people.freebsd.org/~cperciva/rtld.patch
% cat rtld.patch | patch -p1
% make && make install && make clean
Thanks to soko1 from truebsd.org.
 |
 |
 |
 |
 |
|
|
 |
| Friendly Sites: | Who is behind Linux Screw? |
|
GeekyBits³ | Bash Cures Cancer | OMG! Ubuntu! My SysAd Blog | Web Upd8 ZEPY | Linux config Wiki | Planet Sysadmin a non-geek's linux notes | Linux Today TuxArena: The arena of Tux | LinuxAlt.Com |
My name is Artem N. (artiomix AT gmail DOT com) and I'm Linux/Unix, Cisco systems engineer. The main idea of Linux Screw is to share relevant knowledge, skills and observations over The Web. Here you can find a lot of information related to different Linux distributions, FreeBSD, IOS as well as a other Open Source around staff. Read more ›› |
this patch is entended to work on freebsd 7.1 ?
Here’s my output:
Hmm… Looks like a unified diff to me…
The text leading up to this was:
————————–
|Index: rtld.c
|===================================================================
|— rtld.c (revision 199977)
|+++ rtld.c (working copy)
————————–
Patching file rtld.c using Plan A…
Hunk #1 failed at 366.
1 out of 1 hunks failed–saving rejects to rtld.c.rej
done
I’ve looked in the rtld.c and the line 366 don’t match.. is there another version ?
El campo de golf de Matalascañas ha programado para el sábado 15 de enero el primer torneo del año: la octava edición del Cocido de Doñana.
????3???GOLF???????????????K????O??????????
Thanks for taking the time to discuss this, I feel strongly about it and love learning extra on this topic. If doable, as you achieve experience, would you mind updating your weblog with extra data? This can be very useful for me.
It is rare to discover a professional person in whom you can have some trust. In the world at present, nobody really cares about showing others the answer in this subject matter. How happy I am to have definitely found a wonderful site as this. It’s people like you that make a real difference nowadays through the tips they reveal.
*very nice post, i certainly love this website, keep on it
Wonderful informativ submit. Thank U for helping facts. Lookin’ forward for ur following report. Cheers
Brilliant information out there. I by no means let a 24-hour interval terminate withouth looking for up-to-date critical information through this website