Re: New do_mremap vulnerabitily.

From: Chris Friesen
Date: Wed Feb 18 2004 - 13:46:49 EST

Next message: Greg KH: "Re: EISA & sysfs."
Previous message: David Mosberger: "Re: [2.6 PATCH] Altix update"
In reply to: Ulrich Keil: "Re: New do_mremap vulnerabitily."
Next in thread: Richard B. Johnson: "Re: New do_mremap vulnerabitily."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Ulrich Keil wrote:

There was also a Proof-of-concept exploit released:

http://www.derkeiler.com/Mailing-Lists/Securiteam/2004-02/0052.html

Its a bit confusing. They talk about multiple instances of do_munmap() with unchecked return codes. I can only find one, in move_vma().

Chris

--
Chris Friesen | MailStop: 043/33/F10
Nortel Networks | work: (613) 765-0557
3500 Carling Avenue | fax: (613) 765-2986
Nepean, ON K2H 8E9 Canada | email: cfriesen@xxxxxxxxxxxxxxxxxx

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: EISA & sysfs."
Previous message: David Mosberger: "Re: [2.6 PATCH] Altix update"
In reply to: Ulrich Keil: "Re: New do_mremap vulnerabitily."
Next in thread: Richard B. Johnson: "Re: New do_mremap vulnerabitily."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]