FreeBSD 10.3 Jail SHM Issue

FreeBSD jail incompletely protects the access to the IPC primitives. The 'allow.sysvipc' setting only affects IPC queues, leaving other IPC objects unprotected, making them reachable system-wide independently of the system configuration. Versions 7.0 through 10.3 are affected. Proof of concept included.

MD5 | e7bb338f4932b0dcb05045dbf728194c

Related Posts