[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Linux kernel do_mremap VMA limit local privilege escalation vulnerability

From: Dave Jones <davej redhat com>
To: fedora-list redhat com
Subject: Re: Linux kernel do_mremap VMA limit local privilege escalation vulnerability
Date: Thu, 11 Mar 2004 14:18:16 +0000

On Thu, 2004-03-11 at 13:15, Rotariu Bogdan wrote:
> on that site is an "exploit" check that you could try to see if fedora
> kernel 2.4.22-1.2174.nptl is affected
> 
> [+] kernel 2.4.22-1.2174.nptlsmp  vulnerable: YES  exploitable YES

These 'YES's are the result of it doing a comparison on the kernel
version, and seeing '2.4.22'. The fix is backported, so its essentially
2.4.25 as far as the vulnerability is concerned.

>     MMAP #65525  0x50bf5000 - 0x50bf6000
> [-] Failed

Which is why it fails..

	Dave

References:
- Linux kernel do_mremap VMA limit local privilege escalation vulnerability
  - From: Dario Lesca
- Re: Linux kernel do_mremap VMA limit local privilege escalation vulnerability
  - From: Rotariu Bogdan

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]