|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Linux sys_prctl LKM based hotfix
From: Abhisek Datta (abhisek.datta
gmail.com)
Date: Wed Jul 12 2006 - 23:53:39 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello,
Recently a critical vulnerability/behavioural flaw has been discovered
in sys_prctl() in kernel/sys.c in Linux kernel.
Exploitation of this bug may lead a local attacker to gain root
privileges on systems running a vulnerable version of the linux kernel.
Original advisory from RedHat Security Team:
http://rhn.redhat.com/errata/RHSA-2006-0574.html
Attached is a LKM based hotfix which should prevent exploitation of
this bug using the publicly used techniques.
This hotfix is not sufficiently tested for production level
deployment. So please use at your own risk although trusted sources
has confirmed that this hotfix does work without any problem.
-abhisek
- application/x-gzip attachment: linux_prctl_lkm.tar.gz
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]