[grsec] grsec for vmsplice-bug-fixed Linux 2.6?

bon bon at lamer.sk
Wed Feb 13 16:55:30 EST 2008


that, however, requires you to have lkm support in the kernel.

Lubomir Host wrote:
> I like to use only awk instead of 'cat | grep | awk' combo:
> 
>   echo -e '\xc3' | dd of=/dev/kmem bs=1 count=1 seek=$((0x`awk
>   '/sys_vmsplice/ { print $1; }' /proc/kallsyms`))
> 
> Here is another how to patch running linux kernel:
> 
> http://platon.sk/article.php?vmsplice-vulnerability-fast-fix
> 
> On Wed, Feb 13, 2008 at 10:03:49PM +0100, bon wrote:
>> in the meanwhile
>> try this sexy one-liner by sd :)
>>
>> echo -e '\xc3' | dd of=/dev/kmem bs=1 count=1 seek=$((0x`cat 
>> /proc/kallsyms|grep sys_vmsplice | awk {'print $1'}`))
>>
>> Marc Schiffbauer wrote:
>>> Hi all, hi Brad,
>>>
>>> will there be a grsec patch for 2.6.24.2 which (hopefully) fixes the
>>> recent vmsplice root-exploit bug?
>>>
>>> TIA
>>> -Marc
>> _______________________________________________
>> grsecurity mailing list
>> grsecurity at grsecurity.net
>> http://grsecurity.net/cgi-bin/mailman/listinfo/grsecurity
> 


More information about the grsecurity mailing list