Ubuntu

Ubuntu Linux Completely Vulnerable to Fork Bomb

Bug #14869 reported by Lukas Sabota on 2005-04-02

This bug report is a duplicate of: Bug #14505: Consider setting more restrictive default resource limits. Edit Remove

4

Affects		Status	Importance	Assigned to	Milestone
	Ubuntu	Invalid	Critical	Unassigned

Bug Description

Ubuntu Linux is completely vulnerable to a simple fork bomb by default. This is
a moderate security risk on a default install, but this is a severe security
risk when remove logins are enabled through ssh. This is the fork bomb that
will bring down any ubuntu box:
:(){ :&:;};:

Revision history for this message

Lukas Sabota (punkrockguy318) wrote on 2005-04-02:

#1

This is a severe security vulnerability that should be fixed before the hoary
release.

Revision history for this message

Sean D. Quinn (seandq) wrote on 2005-04-02:

#2

I second that, Lucas. This security hole needs to be filled up before some
vicious hacker gets to Ubuntu users' computers.

Revision history for this message

Matt Zimmerman (mdz) wrote on 2005-04-02:

#3

This bug has been marked as a duplicate of bug 14505.

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #14505 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

ubuntu-bugzilla #8547 Edit

Bug watches keep track of this bug in other bug trackers.