December 1, 2009 at 10:09Vulnerability in FreeBSD
Today a message was published about a vulnerability that could allow elevating user privileges in the latest versions of FreeBSD (7.1-8.0). An exploit for vulnerability without warning was released yesterday. On the mailing lists you can find a description and a patch. An official update for the system is expected only tomorrow.
The vulnerability arises in the use of LD variables belonging to files with an assigned UID (ping, ppp, su).
The vulnerability arises in the use of LD variables belonging to files with an assigned UID (ping, ppp, su).