lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <41E1E58C.7080503@syndicalist.net>
From: nix at syndicalist.net (Henrik Persson)
Subject: Linux kernel uselib() privilege elevation,
	corrected

Christian wrote:
> Karol Wiesek schrieb:
>  > [appelast@...quik appelast]$ ./ex -l ./lib
> 
>>>[+] SLAB cleanup
>>>    child 1 VMAs 65527
> 
> [...]
> 
> strange, it does not even compile here:
> 
> evil@...nz:~/dev/$ gcc -O2 -fomit-frame-pointer elflbl.c -o elflbl
> elflbl_v108.c: In function `scan_mm_start':
> elflbl_v108.c:425: error: storage size of `l' isn't known
> elflbl_v108.c:425: error: storage size of `l' isn't known
> elflbl_v108.c: In function `check_vma_flags':
> elflbl_v108.c:545: warning: deprecated use of label at end of compound
> statement

In linux 2.6 the modify_ldt_ldt_s structure is renamed to user_desc. 
Change that on row 425 and it will compile.

-- 
Henrik Persson

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ