Ubuntu
linux-source-2.6.22 package

  1. Bug #190587
  2. Comment #7

Comment 7 for bug 190587

Revision history for this message
Václav Šmilauer (eudoxos) wrote : Re: Local root exploit in kernel 2.6.17 - 2.6.24

I confirm that on hardy and gutsy. I also confirm that the hotfix referenced in debian bugreport http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=464953 which sets the first byte of sys_vmsplice to RET in /dev/mem ( http://www.ping.uio.no/~mortehu/disable-vmsplice-if-exploitable.c ) works and prevents the exploit from functioning. I don't know if having that function returning can otherwise adversely affect the system, though.