Re: [uml-devel] SecurityFocus Article

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Jeff Dike <jdike@addtoit.com>
To: Ed White <ed.white@libero.it>
Cc: ML <User-mode-linux-devel@lists.sourceforge.net>
Subject: Re: [uml-devel] SecurityFocus Article
Date: Thu, 11 May 2006 11:30:07 -0400	[thread overview]
Message-ID: <20060511153007.GA3472@ccure.user-mode-linux.org> (raw)
In-Reply-To: <20060511144508.25147.qmail@securityfocus.com>

On Thu, May 11, 2006 at 02:45:08PM -0000, Ed White wrote:
> I would like to know if UML barriers could by bypassed using this
> attack, or not. Maybe we will need a patch for the kernel, or for UML,
> or what? 

I don't see an actual attack.  The article is assuming some
unspecified vulnerability in the X server.

That being said, UML instances (and processes inside them) typically
have no access to the host's X server, so I can't see this being used
to break out of a UML.

If the host X server accepts connections from remote machines, and has
a vulnerability that can be exploited remotely, then a UML can connect
to it and use it to break out.  However, I would regard this as being
a generic remote exploit that a UML happens to be able to use rather
than something specific to UML.

In this case, as with other remote exploits, the fix is on the host
rather than in the UML.

				Jeff

-------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
User-mode-linux-devel mailing list
User-mode-linux-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-devel

     prev parent reply	other threads:[~2006-05-11 15:30 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-05-11 14:45 [uml-devel] SecurityFocus Article Ed White
2006-05-11 15:30 ` Jeff Dike [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20060511153007.GA3472@ccure.user-mode-linux.org \
    --to=jdike@addtoit.com \
    --cc=User-mode-linux-devel@lists.sourceforge.net \
    --cc=ed.white@libero.it \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.