Ubuntu
linux-source-2.6.17 package

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #190587
Comment #77

Comment 77 for bug 190587

Revision history for this message

In Red Hat Bugzilla #432229, Jason (jason-redhat-bugs) wrote on 2008-02-11:

#77

There is also a kernel module fix that catches vmsplice calls:
http://home.powertech.no/oystein/ptpatch2008/

Makefile and source code worked as is for my 2.6.23.14-115.fc8 x86_64 kernel.
After insmod, execution of the exploit fails:

$ sudo insmod ptpatch2008.ko
$ dmesg | tail -3
ptpatch2008: init, (c) 2008 <email address hidden>
ptpatch2008: syscalls ffffffff81270780
hooked sys_vmsplice
$ ./exploit_test
[...]
[-] vmsplice: Invalid argument
$ dmesg | tail -4
ptpatch2008: init, (c) 2008 <email address hidden>
ptpatch2008: syscalls ffffffff81270780
hooked sys_vmsplice
ptpatch2008: possible EXPLOIT attempt by uid 500.

Ubuntulinux-source-2.6.17 package

Comment 77 for bug 190587

Ubuntu
linux-source-2.6.17 package