udev <141 exploit

Dereck shared with me this linux security exploit: udev < 141 Local Privilege Escalation Exploit, a.k.a. CVE-2009-1185

It affects distributions that ship with udev version <141. Ubuntu ships udev 141 in Jaunty (124 in Intrepid), so I’m covered.

Thought: what does it tell you, the fact that they only find vulnerabilities in old versions of the Linux ecosystem?

~ by azimout on May 18, 2009.

Posted in Uncategorized

4 Responses to “udev <141 exploit”

  1. doesn’t seem to work on my gentoo installation, even though i still have udev 124… maybe i made some error.

    danilo said this on May 18, 2009 at 11:13 pm | Reply

  2. ah, found the reason why… gentoo docs say that vulnerable versions are < 124-r2. which is the version i have installed.

    danilo said this on May 18, 2009 at 11:14 pm | Reply

  3. On the other hand this is a quite old “attack vector”. I’ve seen similar vulnerability in zebra routing suite almost 6 years ago.

    See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0858

    zImage said this on May 19, 2009 at 3:15 pm | Reply

  4. Hellp zImage, thanks for stopping by, and thanks for the info!
    Looking at your blog right now, seems interesting!

    azimout said this on May 19, 2009 at 10:39 pm | Reply

Leave a Reply