[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

On Wed, Nov 04, 2009 at 09:24:55AM -0800, john wrote:
> On Wed, Nov 4, 2009 at 9:15 AM, Dominic Hargreaves <dom@earth.li> wrote:

> > The mmap_min_addr tuneabout was not introduced until after 2.6.18,
> > which is the default etch kernel. I am using the 'etchnhalf' kernel
> > (linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
> > offers this protection.

> So would
> 
> sudo apt-get install linux-image-2.6.24-etchnhalf.1-686
> 
> be the right approach here?

Assuming you would normally run a 686 flavour kernel, yes.

Note that you would have to check that your hardware was compatible
with 2.6.24.

See http://www.debian.org/releases/etch/etchnhalf

for more details and limitations of this approach.

Note also that as with any security-related advice, don't just trust
what I say; do some independent research to validate my claims. I
take no responsibilty for the security of your system by offering this
advice.

Cheers,
Dominic.

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
Reply to: