Red Hat Bugzilla – Bug 112484
Kernel vulnerable for duplicate PIDs
Last modified: 2007-04-18 13:00:45 EDT
Description of problem:
nav=index.html|src/.|src/kernel (duplicate PID fix)
Version-Release number of selected component (if applicable):
I don't know whether it's really possible to use that vulnerability..
.so is your turn ;-)
Maybe - if you think the patch is really needed:
Only Fedora Core's Kernel 2.4.22 is patched against that
vulnerability. Affected are all Red Hat Linux versions.
So this shouldn't affect any NPTL kernel which has entirely different
One of our kernel engineers said "A duplicate PID can be a security
issue if the duplicate replaces the previous task. In that case an
unprivileged user could "mask" the PID of a root daemon, and if
somewhere authentication is PID based, it could assume the identity of
that process." however since users cannot normally fill up the PID
space there would not be a generic exploit for the default install.
Hm, but why is Fedora Core's NPTL Kernel then patched against the
vulnerability, when it isn't affected?
The Fedora NPTL patch actually _removes_ that code. Again, it's
Okay...if you say that, then it isn't a bug :-)