Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Wed, 16 Jul 2014 22:50:37 -0700
From: Kees Cook <>
Subject: CVE-2014-4943: Linux privilege escalation in ppp over l2tp sockets

CVE-2014-4943 is a flaw in the Linux kernel allowing an unprivileged user
to escalate to kernel privilege when CONFIG_PPPOL2TP is enabled. If built
as a module, a work-around to limit this to just the root user would be
to add this to /etc/modprobe.conf:

alias pppox-proto-1 off
blacklist l2tp_ppp

Upstream commit:


Kees Cook                                  

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ