Hello, welcome to the Tuesday, March 8, 2020 edition of the Santernet Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from London, England.

Quick follow up on the Red Cross donation scam that I talked about yesterday and wrote up on Friday.

Well, the original scam asked for a donation via Bitcoin,

but it actually offered an email address to send an email to if you needed help with that.

So I did that, and turns out they're also willing to scam you via PayPal.

I did report the affected address to PayPal,

so hopefully that'll get shut down pretty quickly. The Bitcoin scam wasn't really successful,

still only seeing about $10 or so a single transaction being received by the Bitcoin address.

I hope that this was just a test.

Let me have an interesting vulnerability in the Linux kernel that allows for ProVitch

Escalation.

The developer of that found the vulnerability Max Kellerman did call it dirty pipes

based on its use of pipes. Now, in Unix, you often transfer data between processes via pipes,

and there's a special mode here how these pipes can be used called splice. Now, if you splice pipes,

what this means is instead of copying the data from one buffer to another, from one process

to the other process, several processes share the same piece of memory. That can then under certain

circumstances lead to confusion where data intended for one process

ends up at a different process with different privileges.

Max Kellerman did develop a proof-of-concept exploit and published today a blog post with

details about the vulnerability.

The proof of concept exploit does allow overriding part of the Etsy password file.

...