[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels

To: Daniel Husand <io@naiv.us>
Subject: Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
From: Daniel Lorch <ml-daniel@lorch.cc>
Date: Thu, 19 Feb 2004 00:52:18 +0100

hi

 > This PoC exploit can be used to check if a Linux system is vulnerable
 > to the second do_mremap() bug; the code has only been tested on Linux
 > version 2.4.22 so far.

Did this make your box unstable? Is it resonably safe to run it?

Seems to be safe to run. At least it didn't crash my

  daniel@warp:~$ uname -a
  Linux warp 2.4.23 #1 Sat Jan 17 14:51:13 CET 2004 i686 GNU/Linux

but it reported a "kernel BUG at mmap.c:1197!".

daniel

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
  - From: Christophe Devine <devine@iie.cnam.fr>
- Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
  - From: Daniel Husand <io@naiv.us>

Prev by Date: Re: [Full-Disclosure] InfoSec sleuths beware, Microsoft's attorneys may be knocking at your door
Next by Date: [Full-Disclosure] Re: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges
Previous by thread: Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
Next by thread: Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
Index(es):
- Date
- Thread