subject:"Bug#747492\: sysdig\: possible security issue\: system\(insmod ..\/..\/driver\/sysdig\-probe.ko \/dev\/null 2 \/dev\/null\);"

Bug#747492: sysdig: possible security issue: system(insmod ../../driver/sysdig-probe.ko /dev/null 2 /dev/null);

2014-05-11 Thread Evgeni Golov

control: tags -1 + upstream control: forwarded -1 https://github.com/draios/sysdig/issues/155 Hi, On Fri, May 09, 2014 at 12:35:25PM +0300, Timo Juhani Lindfors wrote: Could this be a security issue if root runs sysdig in /tmp/project1/foo and a local user creates /tmp/driver/sysdig-probe.ko?

Bug#747492: sysdig: possible security issue: system(insmod ../../driver/sysdig-probe.ko /dev/null 2 /dev/null);

2014-05-09 Thread Timo Juhani Lindfors

Package: sysdig Version: 0.1.79-1 Severity: normal Hi, I took a brief look at sysdig today and noticed the following fragment in sysdig.cpp: // // No luck with modprobe either.