Vigil@nce - Linux kernel: bypassing limits via Unix Domain Socket
March 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use a Unix socket on the Linux kernel, in order to
bypass file descriptor resource limits.
– Impacted products: Debian, Fedora, Linux.
– Severity: 1/4.
– Creation date: 23/02/2016.
DESCRIPTION OF THE VULNERABILITY
Resource limits can be defined for each process.
However, file descriptors which are transmitted via a Unix socket
are not counted.
An attacker can therefore use a Unix socket on the Linux kernel,
in order to bypass file descriptor resource limits.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Linux-kernel-bypassing-limits-via-Unix-Domain-Socket-19004