Hi,
does grsecurity 1.9.13 protect against recent do_mremap bug?
Original advisory is here:
http://isec.pl/vulnerabilities/isec-0012-mremap.txt
Exploit code is here:
http://www.security.nnov.ru/files/mremap_poc.c
Best Wishes,
Viktors
do_mremap bug and grsecurity
6 posts
• Page 1 of 1
do_mremap bug and grsecurity
by viktorsr » Tue Jan 06, 2004 9:36 am
- viktorsr
- Posts: 2
- Joined: Tue Jan 06, 2004 9:33 am
kernel version
by viktorsr » Tue Jan 06, 2004 9:45 am
I forgot to specify kernel version: 2.4.23. I know that .24 is out, but maybe there's no reason to upgrade if grsecurity gives enough protection.
- viktorsr
- Posts: 2
- Joined: Tue Jan 06, 2004 9:33 am
by msi » Tue Jan 06, 2004 2:35 pm
daemon2k wrote:the PoC as is seems to fail on 2.4.23-grsec-1.9.13 as long as SEGMEXEC is enabled for it. i'm trying to make it work with SEGMEXEC enabled but not having much luck...
where did you get this exploit from? i want to test my system too..
- msi
- Posts: 29
- Joined: Fri Sep 13, 2002 2:37 pm
by daemon2k » Tue Jan 06, 2004 3:47 pm
I pulled it from a bugtraq posting ( http://marc.theaimsgroup.com/?l=bugtraq ... 402129&w=2 ), but it's identical to the one at http://www.security.nnov.ru/files/mremap_poc.c shown above.
- daemon2k
- Posts: 3
- Joined: Wed Nov 26, 2003 1:19 pm
Re: do_mremap bug and grsecurity
by PaX Team » Wed Jan 07, 2004 12:03 pm
until a working exploit or method is made public, it's hard to tell. what i know for sure is that neither PaX nor grsecurity prevents the bug from getting triggered, so as always, better upgrade than wait and get bitten. a note on SEGMEXEC: while it prevents the posted proof-of-concept code from working it's trivial to overcome, just chpax -s the executable.viktorsr wrote:does grsecurity 1.9.13 protect against recent do_mremap bug?
- PaX Team
- Posts: 2310
- Joined: Mon Mar 18, 2002 4:35 pm
6 posts
• Page 1 of 1