lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <200402191024.07089.fulldis@it97.dyndns.org> From: fulldis at it97.dyndns.org (i.t Consulting) Subject: Re: Re: Second critical mremap() bug found in all Linux kernels Am Wednesday 18 February 2004 17:01 schrieb Gregory A. Gilliss: > There's a hole. Here's how you test/exploit the hole. The script k1dd13z > have it now. Fix it quick. Don't wait! Full disclosure. Not necessarily $ uname -a Linux 2.4.22-gss #1 Sun Nov 30 09:08:04 CET 2003 i686 AMD Athlon(tm) XP 2000+ AuthenticAMD GNU/Linux $ gcc -W -Wall mremap_poc_2.c && ./a.out mmap: Cannot allocate memory created ~65536 VMAs now mremapping 0x3FFFC000 at 0x3FFF9000 kernel may not be vulnerable -- . ___ | | | |