Fixing a critical vulnerability on FreeBSD in 4 steps
Probably many have heard about a very serious vulnerability in FreeBSD (from 7.1 to 8.0), which allows getting root access from a regular user (locally).
I will not post links to the exploit, in order to have fewer pests, but the exploit has just been personally tested and verified that it works.
Wait until the fixes include cvs / svn in the tree, I don’t have a particular desire, and the system doesn’t pull back the whole system again. Therefore, I offer you a simpler, but equally effective way to fix the problem in four lines:
All the best!
I will not post links to the exploit, in order to have fewer pests, but the exploit has just been personally tested and verified that it works.
Wait until the fixes include cvs / svn in the tree, I don’t have a particular desire, and the system doesn’t pull back the whole system again. Therefore, I offer you a simpler, but equally effective way to fix the problem in four lines:
% cd /usr/src/libexec/rtld-elf/
% fetch http://people.freebsd.org/~cperciva/rtld.patch
% cat rtld.patch | patch -p1
% make && make install && make clean
All the best!
')
Source: https://habr.com/ru/post/77050/
All Articles