"The VT implementation (vt_ioctl.c) allows local users to use certain IOCTLs on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys" Thread here: http://www.gossamer-threads.com/lists/linux/kernel/580641 Committed upstream fix to allow only root to use setkeys: http://kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=0b360adbdb54d5b98b78d57ba0916bc4b8871968
Created attachment 128857 [details] updated patch updated patch based on e3f17f0f6e98f58edb13cb38810d93e6d4808e68 commit
ok, tested it on RHEL4 but it seems to break initscripts package assumption (/etc/profile.d/lang.sh) of an user being able to load keymaps. probably this fix is already on Fedora, so I'll take a look how they fixed this.
the fix done in fedora was to add 'kbd-1.12-no-user-map.patch' patch to kbd package, that I'll add here just for reference
Created attachment 128887 [details] patch in FC-5 kdb package time to check if this fits on U5 or will have to wait until RHEL-5
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux maintenance release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux Update release for currently deployed products. This request is not yet committed for inclusion in an Update release.
committed in stream U5 build 42.15. A test kernel with this patch is available from http://people.redhat.com/~jbaron/rhel4/
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2007-0304.html