kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: <linux-kernel@...>

Subject: kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit

Date: Sunday, February 10, 2008 - 2:04 am

Hi,

As the subject says the 2.6.24.1 is still vulnerable to the vmsplice
local root exploit.

[opa@test tmp]$ uname -a
Linux tester 2.6.24.1 #1 Sun Feb 10 00:06:49 EST 2008 i686 unknown
[opa@test tmp]$ ./vms

-----------------------------------
 Linux vmsplice Local Root Exploit
 By qaaz
-----------------------------------
[+] mmap: 0x0 .. 0x1000
[+] page: 0x0
[+] page: 0x20
[+] mmap: 0x4000 .. 0x5000
[+] page: 0x4000
[+] page: 0x4020
[+] mmap: 0x1000 .. 0x2000
[+] page: 0x1000
[+] mmap: 0xb7f56000 .. 0xb7f88000
[+] root
[root@test tmp]#
[root@test tmp]# id
uid=0(root) gid=0(root) groups=2033(opa)
[root@test tmp]# uname -a
Linux test 2.6.24.1 #1 Sun Feb 10 00:06:49 EST 2008 i686 unknown

Is there any known fix/patch for this?
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

kernel 2.6.24.1 still vulnerable to the vmsplice local root ..., Niki Denev, (Sun Feb 10, 2:04 am)

Re: kernel 2.6.24.1 still vulnerable to the vmsplice local r..., Willy Tarreau, (Sun Feb 10, 2:32 am)

Re: kernel 2.6.24.1 still vulnerable to the vmsplice local r..., Niki Denev, (Sun Feb 10, 2:38 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Niki Denev, (Sun Feb 10, 5:40 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Bastian Blank, (Sun Feb 10, 8:22 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Niki Denev, (Sun Feb 10, 9:48 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Niki Denev, (Sun Feb 10, 8:39 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Bastian Blank, (Sun Feb 10, 8:47 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Oliver Pinter, (Sun Feb 10, 9:02 am)

Re: [stable] [PATCH] kernel 2.6.24.1 still vulnerable to the..., Greg KH, (Sun Feb 10, 1:05 pm)

Re: [stable] [PATCH] kernel 2.6.24.1 still vulnerable to the..., Oliver Pinter, (Sun Feb 10, 1:48 pm)

Re: [stable] [PATCH] kernel 2.6.24.1 still vulnerable to the..., Oliver Pinter, (Sun Feb 10, 1:44 pm)

Re: [stable] [PATCH] kernel 2.6.24.1 still vulnerable to the..., Pekka Enberg, (Sun Feb 10, 1:11 pm)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Niki Denev, (Sun Feb 10, 8:54 am)

Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice..., Oliver Pinter, (Sun Feb 10, 8:04 am)


linux-kernel:
Arjan van de Ven	[patch] Add basic sanity checks to the syscall execution patch
Roland McGrath	Re: Linus 2.6.23-rc1
Greg KH	[GIT PATCH] driver core patches against 2.6.24
James Bottomley	Re: Integration of SCST in the mainstream Linux kernel
git:
Paul Mackerras	New features in gitk
Dmitry Potapov	[RFC] Single system account for multiple git users
Robert Schiele	[PATCH] change Perl syntax to support Perl 5.6
Stephan Beyer	git sequencer prototype
openbsd-misc:
Jacob Meuser	Re: Real men don't attack straw men
Frank Bax	RTL8185 wireless support?
mufurcz	panic: aml_die aml_setbufinit:988 (acpi?)
GVG GVG	OpenSSL Certificate Authority Setup
linux-netdev:
Jeff Garzik	Re: [bug?] tg3: Failed to load firmware "tigon/tg3_tso.bin"
Scott Wood	[PATCH 0/9] fs enet and mdio bitbang patches
Alan Swanson	IPSEC IPV4 Tunnel Requires IPV6 WIth 2.6.25?
Леонид Юрьев	[r8169] patch for RTL8102 (5 new MAC/PHY)


trouble with my Asus Mainboard	17 minutes ago	Linux kernel
How to exec user process in kernel mode.	2 days ago	Linux kernel
[IPSEC]IPSEC_MANUAL_REQID_MAX	2 days ago	Linux kernel
help in UDP catching module..	3 days ago	Linux kernel
Is there anything like Real-time drivers?	4 days ago	Linux general
ns16550 serail console in Linux 2.6.19	5 days ago	Linux general
what class should i use to register my devices	5 days ago	Linux kernel
reset bios pasword toshiba	5 days ago	Hardware
Analysis of Process Scheduling	6 days ago	Linux kernel
RT Kernel and SSH Server Panics	6 days ago	Linux kernel

kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit

Online users