Bug#464953: DO NOT USE THE HOTFIX!

To: 464953@bugs.debian.org
Cc: Duncan Robertson <duncan@zog.net.au>
Subject: Bug#464953: DO NOT USE THE HOTFIX!
From: Michael Holzt <debian-bugreports@michael.holzt.de>
Date: Mon, 11 Feb 2008 09:18:48 +0100
Message-id: <[🔎] 20080211081847.GA1733@fqdn.org>
Reply-to: Michael Holzt <debian-bugreports@michael.holzt.de>, 464953@bugs.debian.org

Just for the record: Do not use the "hotfix" named disable-vmsplice-if-
exploitable.c. The hotfix first tries to run the exploit (which would be 
totally unnecessary for the actual "fix" by the way and is therefore a
very dumb thing to do), and this still leads to kernel memory corruption
which will render the system unstable. You can imagine what might come
from corrupted kernel beside a simple crash (e.g. data loss).

It shall be possible to remove the actual exploit attempt from the "fix",
but seems to be another solution which apparently compiles to a kernel
module which will catch and report attempts to (ab)use vmsplice at
http://home.powertech.no/oystein/ptpatch2008/ptpatch2008.c


Regards
Michael

-- 
It's an insane world, but i'm proud to be a part of it. -- Bill Hicks

Reply to:

Prev by Date: Bug#464953: follow up information
Next by Date: Processed: tagging 464945
Previous by thread: Bug#464953: follow up information
Next by thread: Processed: tagging 464945
Index(es):
- Date
- Thread