Oh, also, you still have a left-over /tmp/xxxx that was created setuid during your earlier attempts (note that the "unlink" is commented out of xxxx.c). You're likely running the left-over /tmp/xxxx from earlier sudo's.
-- Privilege Escalation Exploit with setenv or ALL (v. <= 1.6.9p18 ) https://bugs.launchpad.net/bugs/349075 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
