quote from http://www.isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt --- snip --- We were able to create a robust proof-of-concept exploit code giving full super-user privileges on all vulnerable kernel versions. The exploit code will be released next week.
...
Tested and known to be vulnerable kernel versions are all <= 2.2.25, <= 2.4.24 and <= 2.6.2. The 2.2.25 version of Linux kernel does not recognize the MREMAP_FIXED flag but this does not prevent the bug from being successfully exploited. All users are encouraged to patch all vulnerable systems as soon as appropriate vendor patches are released. There is no hotfix for this vulnerablity. Limited per user virtual memory still permits do_munmap() to fail. --- snip ----
best regards, raoul bhatia
OndÅej Surà wrote:
Herbert, would you be so kind and make diff against 2.4.25, which was release just few minutes ago?
O.
_______________________________________________ Vserver mailing list [EMAIL PROTECTED] http://list.linux-vserver.org/mailman/listinfo/vserver
