[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Bug#46709: Mach lets processes write to I/O ports
From: |
Kalle Olavi Niemitalo |
Subject: |
Bug#46709: Mach lets processes write to I/O ports |
Date: |
03 May 2001 11:53:41 +0300 |
tags 46709 security
severity 46709 critical
quit
Letting processes write to EGA ports isn't that awful (with
today's sync-protected monitors), but if Mach also lets them
write to ports used by IDE or SCSI, then it "introduces a
security hole on systems where you install the package."
No, I didn't really test whether Mach allows that -- I don't know
enough about IDE to do that in a way that won't hurt my data.
However, I think it's very likely. Please show I'm mistaken.
This would be a local attack, but might not require any UIDs.
- Bug#46709: Mach lets processes write to I/O ports,
Kalle Olavi Niemitalo <=