Get Paid to Participate     Twitter     Facebook     Google+
Hosting Discussion
 

Hosting Discussion > Web Hosting Forums > Hardware and Server Configuration > Centos 6 / Rhel 6 == Security hole -- Privledge esclation (CVE-2012-0056)
forgot password?


Reply
 
LinkBack Thread Tools


Old
  Post #1 (permalink)   01-24-2012, 03:34 PM
HD Newbie
 
Join Date: Dec 2011
Company: SolidShellSecurity
Posts: 46

Status: SolidShellSecur is offline
https://rhn.redhat.com/errata/RHSA-2012-0052.html

Quote:
* It was found that permissions were not checked properly in the Linux
kernel when handling the /proc/[pid]/mem writing functionality. A local,
unprivileged user could use this flaw to escalate their privileges. Refer
to Red Hat Knowledgebase article DOC-69129, linked to in the References,
for further information. (CVE-2012-0056, Important)
How to test if vuln
Ref: https://access.redhat.com/kb/docs/DOC-69129
Quote:
wget "https://bugzilla.redhat.com/attachment.cgi?id=556461" -O test.c
gcc test.c -o test
./test
__________________
SolidShellSecurity.com. Providing Quality Support, Secure Hosting and Amazing Services. Be sure to checkout our reviews and awards!
99.9% Uptime + Daily security scans + 24/7/365 Helpdesk, Phone & Live Chat Support + Secure + Site Management
 
 
 


Old
  Post #2 (permalink)   01-24-2012, 09:05 PM
HD Community Advisor
 
handsonhosting's Avatar
 
Join Date: Mar 2005
Company: Hands-on Web Hosting
Location: Omaha, NE
Posts: 2,003

Status: handsonhosting is offline
Great pass along! Definitely a MUST DO for anyone running CentOS 6 systems!
__________________
Conor Treacy
http://www.HandsOnWebHosting.com
cPanel Web Hosting, Domain Registration, Managed VPS Servers
SEO in Omaha NE
 
 
 


Old
  Post #3 (permalink)   04-17-2012, 02:10 PM
HD Newbie
 
Join Date: Oct 2011
Posts: 36

Status: qhoster is offline
CentOS 6 turned out to be very buggy and seems not that secure as well ...
__________________
QHoster.com - Unlimited-Domain Web Hosting | Shared & Reseller with cPanel, Softaculous, RVSiteBuilder
OpenVZ, Xen-PV & Xen-HVM VPS Hosting - CentOS , Debian, Ubuntu | cPanel, Plesk
 
 
 
Reply

Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By:




Contact Us | HostingDiscussion.com | Advertising (with spam verification) | Archive

© 2000-2012 HostingDiscussion.com. All right reserved.
Powered by HandsOnWebHosting.com
All times are GMT -6. The time now is 08:49 AM.
Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0