Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw
On Wed, Nov 04, 2009 at 09:24:55AM -0800, john wrote:
> On Wed, Nov 4, 2009 at 9:15 AM, Dominic Hargreaves <dom@earth.li> wrote:
> > The mmap_min_addr tuneabout was not introduced until after 2.6.18,
> > which is the default etch kernel. I am using the 'etchnhalf' kernel
> > (linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
> > offers this protection.
> So would
>
> sudo apt-get install linux-image-2.6.24-etchnhalf.1-686
>
> be the right approach here?
Assuming you would normally run a 686 flavour kernel, yes.
Note that you would have to check that your hardware was compatible
with 2.6.24.
See http://www.debian.org/releases/etch/etchnhalf
for more details and limitations of this approach.
Note also that as with any security-related advice, don't just trust
what I say; do some independent research to validate my claims. I
take no responsibilty for the security of your system by offering this
advice.
Cheers,
Dominic.
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
Reply to: