'Re: [oss-security] Subject: [oss-security] CVE request: kernel:'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Subject: [oss-security] CVE request: kernel:
From:       Josh Bressers <bressers () redhat ! com>
Date:       2010-12-10 20:38:47
Message-ID: 1795978644.998521292013527646.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]

Please use CVE-2010-4346

Thanks.

-- 
    JB

----- "Petr Matousek" <pmatouse@redhat.com> wrote:

> "The install_special_mapping routine (used, for example, to setup the
> vdso)
> skips the security check before insert_vm_struct, allowing a local
> attacker to
> bypass the mmap_min_addr security restriction by limiting the
> available pages
> for special mappings."
> 
> Credit: Tavis Ormandi
> 
> Reference:
> https://lkml.org/lkml/2010/12/9/222
> https://bugzilla.redhat.com/show_bug.cgi?id=662189
> 
> Thanks,
> --
> Petr Matousek / Red Hat Security Response Team
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic