Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1757265AbYBDVe5 (ORCPT ); Mon, 4 Feb 2008 16:34:57 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1755246AbYBDVee (ORCPT ); Mon, 4 Feb 2008 16:34:34 -0500 Received: from 216-99-217-87.dsl.aracnet.com ([216.99.217.87]:46125 "EHLO sous-sol.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1754822AbYBDVed (ORCPT ); Mon, 4 Feb 2008 16:34:33 -0500 Date: Mon, 4 Feb 2008 13:34:06 -0800 From: Chris Wright To: Oliver Pinter Cc: stable@kernel.org, linux-kernel@vger.kernel.org, "chrisw@sous-sol.org" , Greg KH , Willy Tarreau , Adrian Bunk , Nick Piggin Subject: Re: {2.6.22.y} CVE-2007-6434 Message-ID: <20080204213406.GX28947@sequoia.sous-sol.org> References: <6101e8c40802041213y4f3cb310qaff40052ed18d5df@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <6101e8c40802041213y4f3cb310qaff40052ed18d5df@mail.gmail.com> User-Agent: Mutt/1.5.17 (2007-11-01) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 857 Lines: 23 * Oliver Pinter (oliver.pntr@gmail.com) wrote: > mainline: ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5 > > --->8--- > commit ecaf18c15aac8bb9bed7b7aa0e382fe252e275d5 > Author: Eric Paris > Date: Tue Dec 4 23:45:31 2007 -0800 > > VM/Security: add security hook to do_brk > > Given a specifically crafted binary do_brk() can be used to get low pages > available in userspace virtual memory and can thus be used to circumvent > the mmap_min_addr low memory protection. Add security checks in do_brk(). All of the low mmap addr stuff isn't added until 2.6.23. thanks, -chris -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/