[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: where to start?

To: Rik van Riel <riel@conectiva.com.br>
Subject: Re: where to start?
From: John McDermott <jjm@jkintl.com>
Date: Sat, 10 Jun 2000 09:20:00 -0600
CC: kernel-audit@nl.linux.org
Organization: J-K International, Ltd.
References: <Pine.LNX.4.21.0006091943150.31358-100000@duckman.distro.conectiva>
Sender: owner-kernel-audit@nl.linux.org

I supose type 3 includes "Misbehavior Bugs" where the system is supposed
to* do one thing and does another.  That fits somewhat in type 4, but
*could* be a security issue as with your truncating example.

*"supposed to" as documented by comments or manuals of some sort

--john

Rik van Riel wrote:

> 
> 3) stability bugs where the user can "exploit" some special
>    situation to make the kernel behave badly or crash
>    (eg. write to a file you're truncating, confusing buffer.c
>    and various other places)

> Rik
> --

-- 
John McDermott, Writer and Consultant
J-K International, Ltd.
V +1 505/377-6293  F +1 505/377-6313
jjm@jkintl.com

Kernel-audit:  discussion list for security and the linux kernel
Archive:       http://mail.nl.linux.org/kernel-audit/

References:
- where to start?
  - From: Rik van Riel <riel@conectiva.com.br>

Prev by Date: RE: where to start?
Next by Date: A place to start
Prev by thread: Re: where to start?
Next by thread: Re: where to start?
Index(es):
- Date
- Thread