Red Hat Bugzilla – Bug 165663
Last modified: 2012-06-20 09:25:47 EDT
Some ipvs overflows were found and fixed in 2.4 (20050531) and later forward
ported to 2.6 (20050626)
"The impact of the bugs is a kernel stack overflow and privilege escalation
from CAP_NET_ADMIN via the IP_VS_SO_SET_STARTDAEMON/IP_VS_SO_GET_DAEMON
ioctls. People running with 'root=all caps' (i.e., most users) are not
really affected (there's nothing to escalate), but SELinux and similar
users should take it seriously if they grant CAP_NET_ADMIN to other users."
Patch and details:
We should fix this for RHEL4
SELinux does not grant capabilities to users.
Correct - SELinux is presently restrictive only (i.e. only further restricts
access); use of a capability aka privilege still requires uid 0 (at least
initially) plus the corresponding SELinux permission.
thanks; removing security tag
Thank you for submitting this issue for consideration in Red Hat Enterprise Linux. The release for which you requested us to review is now End of Life.
Please See https://access.redhat.com/support/policy/updates/errata/
If you would like Red Hat to re-consider your feature request for an active release, please re-open the request via appropriate support channels and provide additional supporting details about the importance of this issue.