=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v retrieving revision 1.77 retrieving revision 1.78 diff -c -r1.77 -r1.78 *** www/errata.html 1998/02/19 13:49:00 1.77 --- www/errata.html 1998/02/19 21:35:44 1.78 *************** *** 70,76 **** opened read-only on a device, to later on be mmap(2)'d read-write, and then modified. This does not result in a security hole by itself, but it does violate the safety semantics which securelevels are supposed to ! provide. A kernel patch is available which corrects this behaviour.
--- 70,77 ---- opened read-only on a device, to later on be mmap(2)'d read-write, and then modified. This does not result in a security hole by itself, but it does violate the safety semantics which securelevels are supposed to ! provide. If a user manages to gain kmem group permissions, using this ! problem they can then gain root trivially. A kernel patch is available which corrects this behaviour.
*************** *** 252,258 ****