Hi again, >> The only workaroud that is known to me atm is to disable the affected >> kernel modules (which should be handled with care as some of them may >> provide necessary functionality in your operating environment): > > If vm.mmap_min_addr is > 0 you are also not affected, at least not by that > exploit. > > http://www.h-online.com/security/Critical-vulnerability-in-the-Linux- > kernel-affects-all-versions-since-2001--/news/114004 > > CentOS 5 has it sent to 65536 by default. CentoS 4 should be vulnerable. Please note that there is a problem with the SELinux policy shipped in RHEL5, which by default will let anyone mmap at NULL! Best Regards Marcus _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Kernel NULL pointer vulnerability
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: Kernel NULL pointer vulnerability
- From: Marcus Moeller <mail@xxxxxxxxxxxxxxxxx>
- Date: Fri, 14 Aug 2009 15:52:13 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <VA.00003866.186de427@xxxxxxxxxxxxxxxxxx>
- References: <fac47fca0908140524x70970313ua5093f7353f42162@xxxxxxxxxxxxxx> <VA.00003866.186de427@xxxxxxxxxxxxxxxxxx>
- References:
- Kernel NULL pointer vulnerability
- From: Marcus Moeller
- Re: Kernel NULL pointer vulnerability
- From: Kai Schaetzl
- Kernel NULL pointer vulnerability
- Prev by Date: Re: Kernel NULL pointer vulnerability
- Next by Date: Re: Kernel NULL pointer vulnerability
- Previous by thread: Re: Kernel NULL pointer vulnerability
- Next by thread: Re: Kernel NULL pointer vulnerability
- Index(es):
 |