Re: {2.6.22.y} CVE-2007-6434
From: Oliver Pinter
Date: Mon Feb 04 2008 - 16:36:48 EST
ok, thanks
On 2/4/08, Chris Wright <chrisw@xxxxxxxxxxxx> wrote:
> * Oliver Pinter (oliver.pntr@xxxxxxxxx) wrote:
> > mainline: ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5
> >
> > --->8---
> > commit ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5
> > Author: Eric Paris <eparis@xxxxxxxxxx>
> > Date: Tue Dec 4 23:45:31 2007 -0800
> >
> > VM/Security: add security hook to do_brk
> >
> > Given a specifically crafted binary do_brk() can be used to get low
> pages
> > available in userspace virtual memory and can thus be used to
> circumvent
> > the mmap_min_addr low memory protection. Add security checks in
> do_brk().
>
> All of the low mmap addr stuff isn't added until 2.6.23.
>
> thanks,
> -chris
>
--
Thanks,
Oliver
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/