1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
FYI.. |
5 |
|
6 |
- -------- Original Message -------- |
7 |
Subject: [USSG-Group] [iSEC] Linux kernel do_brk() vulnerability details |
8 |
(fwd) |
9 |
Resent-Date: Fri, 5 Dec 2003 14:40:55 -0500 (EST) |
10 |
Resent-From: group@×××××××.edu |
11 |
Date: Fri, 5 Dec 2003 14:40:52 -0500 (EST) |
12 |
From: matt link <mrlink@×××××××.edu> |
13 |
Reply-To: group@×××××××.edu |
14 |
To: ussg - group <group@××××××××××××.edu> |
15 |
|
16 |
|
17 |
fyi, in case you haven't seen this... |
18 |
|
19 |
Matt Link -- Unix Systems Support Group |
20 |
Research and Academic Computing Indiana University |
21 |
|
22 |
- -- gpg fingerprint -- |
23 |
5783 07D7 057C 40BD C5AE D352 8277 09B4 5490 4E58 |
24 |
- -- gpg key -- |
25 |
http://ussg.iu.edu/~mrlink/mrlink.pub.key |
26 |
|
27 |
|
28 |
- ---------- Forwarded message ---------- |
29 |
Date: Fri, 5 Dec 2003 00:04:59 +0100 (CET) |
30 |
From: Paul Starzetz <paul@××××.pl> |
31 |
Reply-To: security@××××.pl |
32 |
To: bugtraq@×××××××××××××.com, vulnwatch@×××××××××.org, |
33 |
~ full-disclosure@××××××××××××.com |
34 |
Subject: [iSEC] Linux kernel do_brk() vulnerability details |
35 |
|
36 |
Hi, |
37 |
|
38 |
We have released a paper covering technical details of the do_brk() bug |
39 |
and the results of our research done while writing the exploit code. |
40 |
It also describes the numerous techniques we have used to create a very |
41 |
effective exploit code that leads to full privilege escalation even on |
42 |
systems running a kernel secured with various security patches. |
43 |
|
44 |
It can be found at: http://isec.pl/papers/linux_kernel_do_brk.pdf |
45 |
|
46 |
Regards, |
47 |
|
48 |
- -- |
49 |
Paul Starzetz |
50 |
iSEC Security Research |
51 |
http://isec.pl/ |
52 |
|
53 |
-----BEGIN PGP SIGNATURE----- |
54 |
Version: GnuPG v1.2.3 (MingW32) |
55 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
56 |
|
57 |
iD8DBQE/0Q4fpq/4o6MEFFMRAmjqAJ9ki/Srw9VkeolZJ8WinD6o98gPeQCg3w4U |
58 |
12XUBstU6hOOv0RJC2wI/vA= |
59 |
=ROig |
60 |
-----END PGP SIGNATURE----- |
61 |
|
62 |
|
63 |
-- |
64 |
gentoo-security@g.o mailing list |