From: Raoul Bhatia (r.bhatia_at_ipax.tk)
Date: Wed 18 Feb 2004 - 14:31:44 GMT

• Previous message: Dariush Pietrzak: "Re: [Vserver] new linux 2.4.25"
• In reply to: Ondøej Surý: "[Vserver] new linux 2.4.25"
• Next in thread: Herbert Poetzl: "Re: [Vserver] new linux 2.4.25"

this would be usefull since new problems regarding mremap and
do_munmap() have been discovered.

quote from http://www.isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt
--- snip ---
We were able to create a robust proof-of-concept exploit code giving
full super-user privileges on all vulnerable kernel versions. The
exploit code will be released next week.

...

Tested and known to be vulnerable kernel versions are all <= 2.2.25, <=
2.4.24 and <= 2.6.2. The 2.2.25 version of Linux kernel does not
recognize the MREMAP_FIXED flag but this does not prevent the bug from
being successfully exploited. All users are encouraged to patch all
vulnerable systems as soon as appropriate vendor patches are released.
There is no hotfix for this vulnerablity. Limited per user virtual
memory still permits do_munmap() to fail.
--- snip ----

best regards,
raoul bhatia

Ondřej Surý wrote:
> Herbert, would you be so kind and make diff against 2.4.25, which was
> release just few minutes ago?
>
> O.
_______________________________________________
Vserver mailing list
Vserver_at_list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

• Previous message: Dariush Pietrzak: "Re: [Vserver] new linux 2.4.25"
• In reply to: Ondøej Surý: "[Vserver] new linux 2.4.25"
• Next in thread: Herbert Poetzl: "Re: [Vserver] new linux 2.4.25"