Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Yama security module not enabled in kernel #514

Open
chrisjohgorman opened this issue Jul 12, 2019 · 1 comment
Open

Yama security module not enabled in kernel #514

chrisjohgorman opened this issue Jul 12, 2019 · 1 comment

Comments

@chrisjohgorman
Copy link

Hello All,

In experimenting with some of the newer kernels I have found that CONFIG_SECURITY_YAMA is disabled in GalliumOS. This leads to the failure of /etc/sysctl.d/10-ptrace.conf which tries to set /proc/sys/kernel/yama/ptrace_scope to 1.

We should either enable CONFIG_SECURITY_YAMA or disable 10-ptrace.conf. Yama is enabled in the default Ubuntu 18.04 with the intent of preventing a malicious attacker from attaching to running processes to examine them with tools like gdb and strace.

For more information on this and a better description of the security reasons for enabling this, please see your kernel Documentation/admin-guide/LSM/Yama.rst.

My machine specs are ...
dmidecode -s system-product-name Banon
My firmware is essentially MattDevo. (He helped me build my own firmware from his git tree.')
My installation method was ISO.
And to reproduce the problem build kernel 5.2 and look at the dmesg output. The kernel can't set /proc/sys/kernel/yama/ptrace_scope.

Chris

@OS-WS
Copy link

OS-WS commented Apr 12, 2021

Hi, Is there any plan to address this vulnerability?
Note that it appears that CVE-2019-15325 was assigned to this issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants