grsecurity forums

Posted: **Tue Jan 06, 2004 9:36 am**

Hi,

does grsecurity 1.9.13 protect against recent do_mremap bug?
Original advisory is here:
http://isec.pl/vulnerabilities/isec-0012-mremap.txt
Exploit code is here:
http://www.security.nnov.ru/files/mremap_poc.c

Best Wishes,
Viktors

Posted: **Tue Jan 06, 2004 9:45 am**

I forgot to specify kernel version: 2.4.23. I know that .24 is out, but maybe there's no reason to upgrade if grsecurity gives enough protection.

Posted: **Tue Jan 06, 2004 1:17 pm**

the PoC as is seems to fail on 2.4.23-grsec-1.9.13 as long as SEGMEXEC is enabled for it. i'm trying to make it work with SEGMEXEC enabled but not having much luck...

Posted: **Tue Jan 06, 2004 2:35 pm**

daemon2k wrote:the PoC as is seems to fail on 2.4.23-grsec-1.9.13 as long as SEGMEXEC is enabled for it. i'm trying to make it work with SEGMEXEC enabled but not having much luck...

where did you get this exploit from? i want to test my system too..

Posted: **Tue Jan 06, 2004 3:47 pm**

I pulled it from a bugtraq posting ( http://marc.theaimsgroup.com/?l=bugtraq ... 402129&w=2 ), but it's identical to the one at http://www.security.nnov.ru/files/mremap_poc.c shown above.

Posted: **Wed Jan 07, 2004 12:03 pm**

viktorsr wrote:does grsecurity 1.9.13 protect against recent do_mremap bug?

until a working exploit or method is made public, it's hard to tell. what i know for sure is that neither PaX nor grsecurity prevents the bug from getting triggered, so as always, better upgrade than wait and get bitten. a note on SEGMEXEC: while it prevents the posted proof-of-concept code from working it's trivial to overcome, just chpax -s the executable.

grsecurity forums

do_mremap bug and grsecurity

do_mremap bug and grsecurity

kernel version

Re: do_mremap bug and grsecurity