grsecurity forums

Posted: **Sat Jun 18, 2005 4:36 am**

Linux 2.6.12 is out now.

I hope a GRSec patch will be out soon, too.

Thanks spender for your work.

Posted: **Sat Jun 18, 2005 3:27 pm**

Hm, it has ASLR itself now. I assume that will have some influence on the PaX patches...

Regards,
Ed

Posted: **Wed Jun 22, 2005 7:15 am**

Hi!

For more then 5 days 2.6.12 is out - no patch or prepatch available

What's up =)

Regards P2k1

Posted: **Thu Jun 23, 2005 1:54 am**

2.6.12.1 is out

these kernel developer guys are too fast for us ;-)

Posted: **Fri Jun 24, 2005 5:32 pm**

P2k1 wrote:Hi!

For more then 5 days 2.6.12 is out - no patch or prepatch available

What's up =)

Regards P2k1

There is no problem in having your box still running on 2.6.11.12+grsec is it ? I mean these people dedicate their time and effort on coding a full security featured patchset. Give them time, they are doing a great job.

Besides, between 2.6.11.12 and 2.6.12.1, there are no real important security issues, so i am sure waiting a bit more won't harm your servers

Steph

Posted: **Sat Jun 25, 2005 3:26 pm**

Posted: **Tue Jun 28, 2005 3:36 am**

FRLinux wrote:There is no problem in having your box still running on 2.6.11.12+grsec is it ? I mean these people dedicate their time and effort on coding a full security featured patchset. Give them time, they are doing a great job.

Yeah they really are and it's much appreciated. But in security, timing is everything

Posted: **Fri Jul 01, 2005 1:17 pm**

Hi,

Code: Select all: Paul Starzetz found an integer overflow in the ELF binary format loader's code dump function in kernels prior to and including 2.4.31-pre1 and 2.6.12-rc4. By creating and executing a specially crafted ELF executable, a local attacker could exploit this to execute arbitrary code with root and kernel privileges (CAN-2005-1263).

Is this fixed in the latest 2.6.11.*?

Regards P2k1

Posted: **Fri Jul 01, 2005 4:59 pm**

P2k1 wrote:
Code: Select all
[...] (CAN-2005-1263).

Is this fixed in the latest 2.6.11.*?

Yes. http://kernel.org/pub/linux/kernel/v2.6 ... g-2.6.11.9

Posted: **Mon Jul 25, 2005 8:35 am**

just checking in to see if there's been any progress on a grsec 2.6.12.x patch.

I hope everyone's weekend was terrific!

Posted: **Fri Jul 29, 2005 7:17 am**

I hope they release a new patch/

linux 2.6.11.x contain bugs with some ethernet 1000 controlers, i'm using them.

King regards.

Posted: **Fri Jul 29, 2005 7:31 am**

Ah, I'm no programmer, but would like to offer any help the developers would like. I know how it is when RL gets in the way of the important things..

Posted: **Fri Jul 29, 2005 7:33 am**

yehh

i'm a developer,

i would like to help the team as they want.

contact me if needed.

Posted: **Fri Jul 29, 2005 1:15 pm**

PaX Team wrote:
cmouse wrote:Not that I want to rush you or anything but do you have any idea about when you'd have a patch for 2.6.12 officially?
i won't support .12, .13 maybe, depending on my free time and how much more they'll break mm/ and others.

I'm using 2.4.* now

Posted: **Fri Jul 29, 2005 1:50 pm**

Alot of us unfortunately do not have the luxury to just switch back to 2.4 from 2.6. This is frustrating, but I suppose I'm sticking with 2.6.11.12 for now.

Btw Thank You for the quote! That helps