Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-security

From: Corey Shields <cshields@g.o>
To: dmonnier@×××××××.edu, gentoo-security@g.o
Subject: [gentoo-security] [Fwd: [USSG-Group] [iSEC] Linux kernel do_brk() vulnerability details (fwd)]
Date: Fri, 05 Dec 2003 17:01:08
Message-Id: 3FD10E1F.7020606@gentoo.org
1 -----BEGIN PGP SIGNED MESSAGE-----
2 Hash: SHA1
3
4 FYI..
5
6 - -------- Original Message --------
7 Subject: [USSG-Group] [iSEC] Linux kernel do_brk() vulnerability details
8 (fwd)
9 Resent-Date: Fri, 5 Dec 2003 14:40:55 -0500 (EST)
10 Resent-From: group@×××××××.edu
11 Date: Fri, 5 Dec 2003 14:40:52 -0500 (EST)
12 From: matt link <mrlink@×××××××.edu>
13 Reply-To: group@×××××××.edu
14 To: ussg - group <group@××××××××××××.edu>
15
16
17 fyi, in case you haven't seen this...
18
19 Matt Link -- Unix Systems Support Group
20 Research and Academic Computing Indiana University
21
22 - -- gpg fingerprint --
23 5783 07D7 057C 40BD C5AE D352 8277 09B4 5490 4E58
24 - -- gpg key --
25 http://ussg.iu.edu/~mrlink/mrlink.pub.key
26
27
28 - ---------- Forwarded message ----------
29 Date: Fri, 5 Dec 2003 00:04:59 +0100 (CET)
30 From: Paul Starzetz <paul@××××.pl>
31 Reply-To: security@××××.pl
32 To: bugtraq@×××××××××××××.com, vulnwatch@×××××××××.org,
33 ~ full-disclosure@××××××××××××.com
34 Subject: [iSEC] Linux kernel do_brk() vulnerability details
35
36 Hi,
37
38 We have released a paper covering technical details of the do_brk() bug
39 and the results of our research done while writing the exploit code.
40 It also describes the numerous techniques we have used to create a very
41 effective exploit code that leads to full privilege escalation even on
42 systems running a kernel secured with various security patches.
43
44 It can be found at: http://isec.pl/papers/linux_kernel_do_brk.pdf
45
46 Regards,
47
48 - --
49 Paul Starzetz
50 iSEC Security Research
51 http://isec.pl/
52
53 -----BEGIN PGP SIGNATURE-----
54 Version: GnuPG v1.2.3 (MingW32)
55 Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
56
57 iD8DBQE/0Q4fpq/4o6MEFFMRAmjqAJ9ki/Srw9VkeolZJ8WinD6o98gPeQCg3w4U
58 12XUBstU6hOOv0RJC2wI/vA=
59 =ROig
60 -----END PGP SIGNATURE-----
61
62
63 --
64 gentoo-security@g.o mailing list
Report Message
Find on MARC Find on Google Groups