[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Gnu-arch-users] patch: clean up some cacherev mess
|
From: |
Alfred M\. Szmidt |
|
Subject: |
Re: [Gnu-arch-users] patch: clean up some cacherev mess |
|
Date: |
Wed, 23 Nov 2005 21:03:40 +0100 |
> I think my keyword here was `something like'. /tmp would be
> hardcoded so such things cannot happen, and not links to be
> followed, etc etc etc.
Probably not going to happen. I read somewhere that if users are
allowed to reap /tmp anytime at will, a malicious user can exploit
some race condition in tmp file creation to do privilege
escalation.
Could you dig up the article? I can't see any reasons why it wouldn't
be utterly trivial to make such a program totally abuse safe.
- RE: [Gnu-arch-users] patch: clean up some cacherev mess, (continued)
- RE: [Gnu-arch-users] patch: clean up some cacherev mess, Derek Zhou, 2005/11/22
- RE: [Gnu-arch-users] patch: clean up some cacherev mess, Derek Zhou, 2005/11/23
- RE: [Gnu-arch-users] patch: clean up some cacherev mess, Derek Zhou, 2005/11/23
- Re: [Gnu-arch-users] patch: clean up some cacherev mess,
Alfred M\. Szmidt <=
- RE: [Gnu-arch-users] patch: clean up some cacherev mess, Derek Zhou, 2005/11/23