Re: New do_mremap vulnerabitily.
From: Chris Friesen
Date: Wed Feb 18 2004 - 13:46:49 EST
Ulrich Keil wrote:
There was also a Proof-of-concept exploit released:
http://www.derkeiler.com/Mailing-Lists/Securiteam/2004-02/0052.html
Its a bit confusing. They talk about multiple instances of do_munmap()
with unchecked return codes. I can only find one, in move_vma().
Chris
--
Chris Friesen | MailStop: 043/33/F10
Nortel Networks | work: (613) 765-0557
3500 Carling Avenue | fax: (613) 765-2986
Nepean, ON K2H 8E9 Canada | email: cfriesen@xxxxxxxxxxxxxxxxxx
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/