Comment 1 for bug 420635

Soren Hansen (soren) wrote :

Set the importance to medium. This matches the security team's assessment in bug #413656. Note that Ubuntu by default has a value of 65536 for vm.mmap_min_addr, so the only known attack vectors are through setuid binaries or if someone installed wine or dosemu (which causes vm.mmap_min_addr to be set to 0). I think dosemu and wine are rarities on EC2 :)