Re: Backport of the integer overflow in the brk system call
Scripsit Tom <tb.31123.nospam@comcast.net>
> On Tue, Dec 02, 2003 at 11:06:44PM +0800, Isaac To wrote:
> > rather far from changing anything in the kernel memory. Andreas is
> > definitely right that the hole doesn't look like that it is that dangerous.
> If it wasn't a big deal we wouldn't be talking about it. It shut down
> servers. It's dangerous enough.
Whw Isaac said was that he understands why the kernel developer who
originally fixed the bug did not realize that it was security
critical.
--
Henning Makholm "Detta, sade de, vore rena sanningen;
ty de kunde tala sanning lika väl som någon
annan, när de bara visste vad det tjänade til."
Reply to: