Once upon a time, Gary Gatling <[email protected]> said: > on a 32 bit machine and indeed, RHEL 5 is affected. (The first exploit > code I saw over the weekend did not work but this one did) I compiled on > 32 bit kernel and ran on 64 bit kernel (2.6.18-194.11.3.el5) and got root. > scary. I've added the workaround on some shared login servers we run > until the new kernel has finished testing phase.
The workaround only prevents the "easy" exploit (compiling a 32 bit ELF binary and running it). That's not the only way to make a 32 bit system call however, and AFAIK there's no way to block the other ways of exploiting this. -- Chris Adams <[email protected]> Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble. _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
