Re: {2.6.22.y} CVE-2007-6434
- From: "Oliver Pinter" <oliver.pntr@xxxxxxxxx>
- Date: Mon, 4 Feb 2008 22:36:36 +0100
ok, thanks
On 2/4/08, Chris Wright <chrisw@xxxxxxxxxxxx> wrote:
* Oliver Pinter (oliver.pntr@xxxxxxxxx) wrote:
mainline: ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5pages
--->8---
commit ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5
Author: Eric Paris <eparis@xxxxxxxxxx>
Date: Tue Dec 4 23:45:31 2007 -0800
VM/Security: add security hook to do_brk
Given a specifically crafted binary do_brk() can be used to get low
available in userspace virtual memory and can thus be used tocircumvent
the mmap_min_addr low memory protection. Add security checks indo_brk().
All of the low mmap addr stuff isn't added until 2.6.23.
thanks,
-chris
--
Thanks,
Oliver
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- References:
- {2.6.22.y} CVE-2007-6434
- From: Oliver Pinter
- Re: {2.6.22.y} CVE-2007-6434
- From: Chris Wright
- {2.6.22.y} CVE-2007-6434
- Prev by Date: Re: {2.6.22.y} CVE-2007-6434
- Next by Date: Re: [PATCH] USB: mark USB drivers as being GPL only
- Previous by thread: Re: {2.6.22.y} CVE-2007-6434
- Next by thread: [GIT PULL] async_tx update for 2.6.25
- Index(es):
Relevant Pages
|
