Security :: New Flaw Enables Null Pointer Exploits?
Jul 18, 2009
I refrained from posting this in the Kernel Vulns thread earlier, due to its zero-day status. But now that the issue has been Slashdotted, there's no use in keeping us from publicly discussing this vulnerability. The link to the article (from which I quote below) is here. Brad Spengler's original announcement on the Dailydave mailing list is here.Quote:A researcher has published exploit code for a new vulnerability he discovered in the Linux kernel. The vulnerability is an especially interesting one in that the researcher who discovered it, Brad Spengler, has demonstrated that he can use the weakness to defeat many of the add-on security protections offered by SELinux and AppArmor.
View 9 Replies
ADVERTISEMENT
May 19, 2011
#!/bin/bash
sed -n 8p file.txt
returns the 8th line to the StdOut.
If I assign the value to the variable line = $(sed -n 8p file.txt)
and now print it out with echo
echo $line
the line would be printed.
But what if the file has only 4 lines. What value would be assigned to the variable line?
I want to know that because I want to only print it if the value is "something", that is not null.
In Java for example I would do it like this...
String line = "";
line = reader.readLine(); // or anything else..
if(line!=null){
System.out.println(line);
}
How would I check if the value is not "null"(I don't know if bash knows null)
View 13 Replies
View Related
Nov 17, 2009
I am trying to install F12 on a Dell Latitude E5400 laptop. It got through the whole install process, but when it rebooted i just get a screen that says
"unable to handle kernel null pointer dereference"
and it just hangs there.
View 2 Replies
View Related
Jun 21, 2009
since upgrading to Fedora 11 I keep getting this error:
Code:
BUG: unable to handle kernel NULL pointer dereference at 0000000000000041
IP: [<ffffffffa01fab94>] sync_request+0x1/0x8de [raid456]
PGD 49435067 PUD 494f6067 PMD 0
Oops: 0002 [#1] SMP
last sysfs file: /sys/devices/virtual/block/md0/md/sync_speed
CPU 0
Modules linked in: ip6table_filter ip6_tables ip6t_REJECT nf_conntrack_ipv6
[Code]...
View 1 Replies
View Related
Feb 18, 2011
I've evaluated about 15 offline storage systems this week, and one of the best was spideroak, but there's a huge issue in their shared folder structure and procedure.When you make part of your data shareable you MUST share a folder from your original disk. This is a real pain. You cannot share specific files like you can on many others.To initiate sharing your establish your unique username for sharing (different preferably than your spideroak username) the share name, and the room key (password).While you might expect the share name to be part of the URL that guides you to the share which then accepts your password for access, thats not how it works. Instead spideroak gives you a URL that contains the PASSWORD and does not even mention the share name!!
Therefore anyone you give the URL to has direct access to the share you create (which is what you are trying to accomplish in general) but any browser THEY USE will remember the URL which contains the password, not the share name.THIS IS A HUGE SECURITY ISSUE since you have no control over how an authorized user is going to access your data and from where and most users are not sophisticated enough to guard against the default intrusion they are going to leave behind.
View 3 Replies
View Related
Oct 21, 2010
Quote: The open-source Linux operating system contains a serious security flaw that can be exploited to gain superuser rights on a target system. The vulnerability, in the Linux implementation of the Reliable Datagram Sockets (RDS) protocol, affects unpatched versions of the Linux kernel, starting from 2.6.30, where the RDS protocol was first included.
According to VSR Security, the research outfit that discovered the security hole, Linux installations are only vulnerable if the CONFIG_RDS kernel configuration option is set, and if there are no restrictions on unprivileged users loading packet family modules, as is the case on most stock distributions.
View 3 Replies
View Related
Nov 25, 2009
A few days ago I installed F12 and it was working fine very well up until today when I booted my computer from a perfect working order state yesterday to this. Well my wireless was still being sniffed and slowed down to dial up speed but what's new thats been consistant for at least 3 months I can't really do much about it since my brother doesn't like changing the password.
I recently logged onto my new fedora 12, 64-bit, system encrypted (all partitions effected by install), selinux enforced install to find myself in tty4 and some "other" users logged on to the other terminals. My folders would have lock icons on them after opening, my notication menu/toolbar crashed and hasn't returned on system reboot, some data transfers between removable storage returned input output errors while others worked fine(?). I also recieved this kernel bug output from the bug reporting tool but I have no idea what it means.
Also I was not loose with the security either I had removed unconfined login types (After setting up the system as I needed) meaning I couldn't even run root or sudo and neither could anyone else (asfar as I was aware). I pretty much increased selinux to its maximum boolean strictness and limited the _default_(Me included) account to a user from a _default_ unconfined (to actually be able to log in with the selinux boolean in place). Meaning they "the exploiters" were able to bypass selinux as a user account? How is that possible and even if you do root logon is disabled by selinux too?
At the moment I'm on a live cd trying to look for a way to custimise them as it seems it may be my only option.
Just a side note you can't just log in to tty4 by default without actively taking up spaces either by other users or your own use. Meaning since the tty login is automated 3 terminals were in use tty1, tty2 and tty3.
Which commands should I run to find out what is being done?
Edit: Just had my F12 x64 live cd taken down twice and had to hard reset as the toolbar disappeared. Took a photo of the last error message. I was just reading a pdf and using firefox at the time.
Is fedora usually this easy to hack?
View 8 Replies
View Related
Apr 29, 2011
Does anyone know any common apache 2.2 exploits and how to stop them? I am setting up a web server and want it to be secure as possible. I currently have a basic lamp server on a ubuntu server.
View 1 Replies
View Related
Mar 15, 2011
I have set logwatch to report daily the logs, somehow since last week i get below message. A total of 1 possible successful probes were detected (the following URLs contain strings that match one or more of a listing of strings that indicate a possible exploit):
/cgi-bin/blocked.cgi?clientaddr=192.168.1.108&clientname=&clientident=&clientgroup=limitedaccess&targetclass= untrusted&url=http://adfarm.mediaplex.com/ad/fm/9608-84171-8772-2?
[code]...
View 7 Replies
View Related
Jul 4, 2010
When there is an exploit in the kernal, can the iptables firewall get bypass? If yes,how do you know? Otherwise how can you find out.
View 9 Replies
View Related
Jun 3, 2011
I have some questions about security
1> are the flash exploits are of any use to a Linux operating system like Ubuntu etc. ?
2>are the Microsoft office exploits any risk to libreoffice or open-office software suites?
3>are there exploits for Linux , open-office and libreoffice ?
View 9 Replies
View Related
Dec 9, 2010
Recently I had a Java exploit on Windows. Luckily Microsoft Security Essentials identified and removed it. Such things can happen on Linux as well, from what I've heard. Why does Linux offer no such detection?
View 14 Replies
View Related
Jul 25, 2010
I wanted to know if there was a firewall program out there that can open specific ports when a program/process is run and disable the ports again when the program is closed.
View 2 Replies
View Related
Aug 5, 2010
I have a server running Red Hat Enterprise Linux ES (2.6.9.55.ELsmp). When it starts up I get the following error: Uncompressing Linux... Ok, booting the kernel. Red Hat nash version 4.2.1.10 starting WARNING: can't access (null) exec of init ((null)) failed!!!: 14 unmount /initrd/dev failed: 2 Kernel panic - not syncing: Attempted to kill init!
After that I got no response from the OS. I have the installation CD, so I tried to start the rescue mode, while going through the steps I received an error stating that mounting to /mnt/sysimage failed and that if I want to I can access a shell. I really don't know what to do from here
View 6 Replies
View Related
Aug 19, 2010
I've snort_inline2.4.5 and didn't found snort rules-snapshot-2.4.5.tar.gz at snort home what i do
View 2 Replies
View Related
May 29, 2011
Running firefox in a SELinux sandbox - periodically the mouse refuses to leave the sandbox (i.e., gets stuck in the browser, refusing to traverse across the window border onto the desktop). This usually happens once in a while, though periodically once every 15 mins or so - no particular pattern, no pattern in the websites visited either.
The setup is as follows:
- Fedora 15 with a bare metal X install (TWM, desktop locked down ala a kiosk install - I will try a different wm to see if that makes any difference at some point)
- VPN (having been through a few VPN providers not all are equal, and this is a pretty good one, running OpenVPN at the mo. - I will try L2TP when I get round to it)
- Firewall locked down to the max.
- As far as reasonably can be done, no direct access to the machine - the install at least in theory is untainted
Does anyone know of a SELinux forum? Can't see anything myself or at least in the first instance.
I'm assuming this is a MITM problem - largely 'cos I have crime sitting on my (Internet) ass. Same problem with SL6 also, so not Fedora specific. I shall put the security spin into a VM and develop my network engineer skills at some point!
View 2 Replies
View Related
May 9, 2010
For a long time I've used a custom xsession that loads Mythtv without any sort of desktop environment. Every time I upgrade I've just backed up and restored my xsessions entry. I did the same when switching to 10.4 only to find that the custom xsession entry causes gdm to login WITHOUT a password.When I select the custom xsession in GDM I get logged in immediately without a password or confirmation. The expected behavior is that I'd select the xsession and not get logged in until after entering my password. I've done some trial and error with this issue and it seems that it boils down to a single line in the custom xsession file.
View 4 Replies
View Related
Sep 22, 2010
Just installed the latest kernel upgrades, rebooted, fired up KDE and got this message: "KDE detected that one or more internal sound devices were removed. Do you want KDE to permanently forget about these devices? The list of the devices KDE thinks can be removed: Capture: HDA Intel (AD198x Analog) Output: HDA Intel (AD198x Analog) Output: HDA Intel (AD198x Digital)"
It then asked, "yes, cancel, manage devices." When I clicked on "manage" it showed Esound as the only device, but it didn't work. So, was something was left out when the packages were compiled?
View 14 Replies
View Related
Jun 27, 2009
I have been googling trying to fix this ... basicly I have a (int **) variable, and when I try to pass a (int) value to a specific position, I have seg.fault.Resuming what I have is:
int ** p;
p[0][0] = 1; //segmentation fault
View 7 Replies
View Related
Nov 1, 2010
I recently re0instralled and update ubuntu 10.04 LTS. After installing and running debsecan, I found ALOT of problems. Does anyone have experiance with this tool?
View 2 Replies
View Related
Dec 13, 2010
In the /var/log/messages log I have the following fail:Dec 13 13:24:50 mailserver kernel: ipmi_si(SI_CHECK_BMC): Failed to get Global Enables 0xc6.What does this mean?It is a HP server...Linux debian etch, kernel 2.6
View 3 Replies
View Related
Dec 18, 2010
Is Linux vulnerable to Java drive-by exploits? Another computer I run on windows 7 just notified me that it was infected through Java, and I'm wondering if my Linux box (ubuntu 10) with Java installed is vulnerable.
View 1 Replies
View Related
Sep 8, 2010
a program available that enables one to work with PDF files on Ubuntu?
View 6 Replies
View Related
Dec 23, 2010
enables a full screen mode in Gnome. I was previously able to do this via the KDE menu. The main purpose for this, was to get mplayer working in full screen mode when watching my media links. I am now unable to do this since switching to gnome.
View 2 Replies
View Related
Nov 6, 2010
I recently got VMC and cant get it to work on my OS, tried searching everywhere but only can find help with I386 OS which I believe is for 32bit machines because I got this message "Error: Dependency is not satisfiable: ozerocdoff" when I tried to install software. One site had links to some sort of drivers, but the pages are invalid and wont load. Is there any software/drivers that can enable me to use VMC on my 64bit machine or must I continue having to revert back to windows? If so could someone please add links?
View 1 Replies
View Related
Jan 14, 2011
I recently switched from windows xp to ubuntu and have been very impressed so far. However, I've run into a bit of a problem. My laptop has a switch on the side that enables or disables the wireless card and every now and again its inevitable that someone accidentally switches it off. When I had windows xp all you had to do to re-enable it was to go to the device manager and turn it back on however ubuntu apparently doesn't have a device manager. so I need help. my wireless card info is05:00.0 Network controller: Intel Corporation PRO/Wireless 3945ABG [Golan] Network Connection (rev 02)
View 1 Replies
View Related
Mar 7, 2011
The language item (which enables you to switch between languages) in the upright-corner has disappeared. How can I bring it back?
View 1 Replies
View Related
Dec 5, 2009
How can I download multimedia codecs which enables me to play all kind of audio and video files. I am using 64 bit F12.
View 3 Replies
View Related
Sep 24, 2010
Having an odd boot message with Ubuntu 10.04. I've had it since I first installed Ubuntu a few months back and I am getting tired of it slowing down my boot up time.No luck on the Ubuntu forums or bug reports; no one seems to know what to do.uote:udevd-work [332] open /dev/null failed no such file or directory
View 6 Replies
View Related
Jul 16, 2010
Is there a Kate plugin that enables file comparison in Kate?, something like the plugin available for Notepad++
View 1 Replies
View Related
