Den 01/10/2012 kl. 13.55 skrev Eitan Adler <[email protected]>: > On 1 October 2012 07:08, Konstantin Belousov <[email protected]> wrote: >> I do not believe in the dreadful 'flood ping' security breach. Is a >> local escalation possible with non-dropped root ? > > It is clearly a local escalation: a non-root user can do something > which was intended only for root. It is a different question how > serious the breach is.
Are there any objections to the path I attached in my first post? To the approach in general? If not, I'll send a PR so it doesn't get lost. Thanks, Erik_______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
