Verification of SYScall changes because of CVE-2009-0029

From: Mitchell Erblich
Date: Thu Oct 21 2010 - 01:41:54 EST

Next message: H. Peter Anvin: "Re: [tip:x86/mm] percpu: Introduce a read-mostly percpu API"
Previous message: Bruno Randolf: "Re: [PATCH v3] Add generic exponentially weighted moving average (EWMA) function"
Next in thread: Christian Borntraeger: "Re: Verification of SYScall changes because of CVE-2009-0029"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

he ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service (crash) or possibly gain privileges via a crafted system call.

Has anyone been able to verify (a program that exploits this issue) ?

Thanks,
Please copy me if you respond.
Mitchell Erblich--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: H. Peter Anvin: "Re: [tip:x86/mm] percpu: Introduce a read-mostly percpu API"
Previous message: Bruno Randolf: "Re: [PATCH v3] Add generic exponentially weighted moving average (EWMA) function"
Next in thread: Christian Borntraeger: "Re: Verification of SYScall changes because of CVE-2009-0029"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]