• info
• discussion
• exploit
• solution
• references

Linux VServer Project CHRoot Breakout Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue.

Debian GNU/Linux has discovered that their original patches to address this issue were incomplete. Debian has released an advisory and fixes to properly address this issue in the util-vserver package and in the Linux kernel version 2.4 vserver patch. Please see the referenced advisory and Debian bug references for more information.


VServer Linux-VServer 1.20

• VServer patch-2.4.24-vs1.25.diff.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/patch-2.4.24-vs1.25.di ff.gz


• VServer split-2.4.24-vs1.25.tar.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/split-2.4.24-vs1.25.ta r.gz


• VServer util-vserver-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28-1mdk .i586.rpm


• VServer util-vserver-0.28.tar.bz2
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28.tar. bz2


• VServer util-vserver-linuxconf-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-linuxconf -0.28-1mdk.i586.rpm

VServer Linux-VServer 1.21

• VServer patch-2.4.24-vs1.25.diff.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/patch-2.4.24-vs1.25.di ff.gz


• VServer split-2.4.24-vs1.25.tar.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/split-2.4.24-vs1.25.ta r.gz


• VServer util-vserver-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28-1mdk .i586.rpm


• VServer util-vserver-0.28.tar.bz2
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28.tar. bz2


• VServer util-vserver-linuxconf-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-linuxconf -0.28-1mdk.i586.rpm

VServer Linux-VServer 1.22

• VServer patch-2.4.24-vs1.25.diff.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/patch-2.4.24-vs1.25.di ff.gz


• VServer split-2.4.24-vs1.25.tar.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/split-2.4.24-vs1.25.ta r.gz


• VServer util-vserver-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28-1mdk .i586.rpm


• VServer util-vserver-0.28.tar.bz2
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28.tar. bz2


• VServer util-vserver-linuxconf-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-linuxconf -0.28-1mdk.i586.rpm

VServer Linux-VServer 1.23

• VServer patch-2.4.24-vs1.25.diff.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/patch-2.4.24-vs1.25.di ff.gz


• VServer split-2.4.24-vs1.25.tar.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/split-2.4.24-vs1.25.ta r.gz


• VServer util-vserver-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28-1mdk .i586.rpm


• VServer util-vserver-0.28.tar.bz2
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28.tar. bz2


• VServer util-vserver-linuxconf-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-linuxconf -0.28-1mdk.i586.rpm

VServer Linux-VServer 1.24

• VServer patch-2.4.24-vs1.25.diff.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/patch-2.4.24-vs1.25.di ff.gz


• VServer split-2.4.24-vs1.25.tar.gz
  http://www.13thfloor.at/vserver/s_release/v1.25/split-2.4.24-vs1.25.ta r.gz


• VServer util-vserver-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28-1mdk .i586.rpm


• VServer util-vserver-0.28.tar.bz2
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-0.28.tar. bz2


• VServer util-vserver-linuxconf-0.28-1mdk.i586.rpm
  http://www.13thfloor.at/vserver/s_release/v1.25/util-vserver-linuxconf -0.28-1mdk.i586.rpm