Re: milw0rm rootkit

From: Valdis . Kletnieks
Date: Mon Mar 14 2011 - 15:57:35 EST

Next message: Johannes Weiner: "Re: [PATCH] thp+memcg-numa: fix BUG at include/linux/mm.h:370!"
Previous message: Jean-Francois Dagenais: "Re: [PATCH] mfd: pxa-w1: MFD driver for PXA 1wire control + DS1WM chip"
In reply to: Justin: "Re: milw0rm rootkit"
Next in thread: Alan Cox: "Re: milw0rm rootkit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 14 Mar 2011 12:28:11 PDT, Justin said:
> Yes, she runs 2.6.34.8-68.fc13.i686.PAE

Which is the most recently released Fedora 13 kernel, from Feb 24,
so not ancient...

> I know this is for the kernel... The C file seems to exploit a
> vulnerability in the kernel, so I thought I should let the kernel
> people know so they could patch it upstream.

Toss the .c file to 'security@xxxxxxxxxx', that's what it's there for.
If you have enough kernel savvy to figure out what's getting abused,
cc: the subsystem maintainer. But if you don't, that's OK too,
somebody reading security@ will handle that if needed.

Attachment: pgp00000.pgp
Description: PGP signature

Next message: Johannes Weiner: "Re: [PATCH] thp+memcg-numa: fix BUG at include/linux/mm.h:370!"
Previous message: Jean-Francois Dagenais: "Re: [PATCH] mfd: pxa-w1: MFD driver for PXA 1wire control + DS1WM chip"
In reply to: Justin: "Re: milw0rm rootkit"
Next in thread: Alan Cox: "Re: milw0rm rootkit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]