New mremap bug

Billy O'Connor billyoc at gnuyork.org
Wed Feb 18 10:39:55 PST 2004


Christophe Devine <devine at iie.cnam.fr> writes:

> Have a look at the kernel messages with dmesg, if you see stuff like:
>
> kernel BUG at mmap.c:1194!
> invalid operand: 0000
> CPU:    0
> EIP:    0010:[<c01239b5>]    Not tainted
>
> Then your kernel is almost certainly vulnerable. There's no root exploit
> available yet though ;-)

>From lkml:

"Fixed in 2.6.3 and 2.4.25 (and, I think, vendor kernels), please upgrade
if you allow local shell access to untrusted users." -- Linus




More information about the lfs-security mailing list