Re: uselib() & 2.6.X?
From: Marcelo Tosatti (marcelo.tosatti_at_cyclades.com)
Date: 01/07/05
- Previous message: Marcos D. Marado Torres: "grsecurity 2.1.0 release / 5 Linux kernel advisories (fwd)"
- In reply to: Lukasz Trabinski: "uselib() & 2.6.X?"
- Next in thread: linux-os: "Re: uselib() & 2.6.X?"
- Reply: linux-os: "Re: uselib() & 2.6.X?"
- Reply: Alan Cox: "Re: uselib() & 2.6.X?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 7 Jan 2005 15:07:12 -0200 To: Lukasz Trabinski <lukasz@wsisiz.edu.pl>
On Fri, Jan 07, 2005 at 04:59:22PM +0100, Lukasz Trabinski wrote:
> Hello
>
>
> http://isec.pl/vulnerabilities/isec-0021-uselib.txt
>
> [...]
> Locally exploitable flaws have been found in the Linux binary format
> loaders' uselib() functions that allow local users to gain root
> privileges.
> [...]
> Version: 2.4 up to and including 2.4.29-rc2, 2.6 up to and including 2.6.10
> [...]
>
> It's was fixed by Marcelo on 2.4.29-rc1. Thank's :)
> What about 2.6.X? Is any patch available? I don't see any changes
> around binfmt_elf in 2.6.10-bk10?
2.6.10-ac contains a version of the fix.
Attached is what going to be merged in mainline, most likely.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- text/plain attachment: 2.6.10-mm1-brk-locked.patch
- Previous message: Marcos D. Marado Torres: "grsecurity 2.1.0 release / 5 Linux kernel advisories (fwd)"
- In reply to: Lukasz Trabinski: "uselib() & 2.6.X?"
- Next in thread: linux-os: "Re: uselib() & 2.6.X?"
- Reply: linux-os: "Re: uselib() & 2.6.X?"
- Reply: Alan Cox: "Re: uselib() & 2.6.X?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
