lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: ml-daniel at lorch.cc (Daniel Lorch)
Subject: Re: Second critical mremap() bug found in all
 Linux kernels

hi

>  > This PoC exploit can be used to check if a Linux system is vulnerable
>  > to the second do_mremap() bug; the code has only been tested on Linux
>  > version 2.4.22 so far.
> 
> Did this make your box unstable? Is it resonably safe to run it?

Seems to be safe to run. At least it didn't crash my

   daniel@...p:~$ uname -a
   Linux warp 2.4.23 #1 Sat Jan 17 14:51:13 CET 2004 i686 GNU/Linux

but it reported a "kernel BUG at mmap.c:1197!".

daniel

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ