-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hello! Forwarded message included. Regards, BG
- -------- Original Message -------- Subject: [Ilug-cal-discuss] Linux sys_prctl LKM based hotfix Date: Thu, 13 Jul 2006 06:01:38 +0000 From: Abhisek Datta abhisek.datta@gmail.com
Hello,
Recently a critical vulnerability/behavioural flaw has been discovered in sys_prctl() in kernel/sys.c in Linux kernel.
Exploitation of this bug can lead a local attacker to gain root privileges on systems running a vulnerable version of the kernel.
Original advisory from RedHat Security Team: http://rhn.redhat.com/errata/RHSA-2006-0574.html
Attached (link provided) is a LKM based hotfix which should prevent exploitation of this bug using the publicly used techniques.
This hotfix is not sufficiently tested for production level deployment. So please use at your own risk although trusted sources apart from myself has confirmed that this hotfix does work without any problem.
Information related to this hotfix like how to use it and how can you test your system for this vulnerability can also be found in my blog: http://www.eos-india.net/abhisek/blog/linux_prctl-2006-07-12-23-31.html
- -- It appears that this list doesnt allow .tar.gz attachments. So here is the link to the hotfix: http://www.freeshell.in/~abhisek/linux_prctl_lkm.tar.gz
- -abhisek
- -- Baishampayan Ghose b.ghose@ubuntu.com Ubuntu -- Linux for Human Beings http://www.ubuntu.com/
1024D/86361B74 BB2C E244 15AD 05C5 523A 90E7 4249 3494 8636 1B74