Date: Mon, 24 Jan 2000 18:09:37 -0800 (PST) From: Matthew Dillon <dillon@apollo.backplane.com> To: Michael Oswell <oswell@xcert.com> Cc: Warner Losh <imp@village.org>, Tim Yardley <yardley@uiuc.edu>, freebsd-security@FreeBSD.ORG Subject: Re: Fwd: *BSD procfs vulnerability Message-ID: <200001250209.SAA94595@apollo.backplane.com> References: <Pine.BSF.4.21.0001241557240.89994-100000@oswell.x509.com>
next in thread | previous in thread | raw e-mail | index | archive | help
:I've manually taken the information from the 3.x patch and used it to
:patch a 2.2.7 box we had here. It appears to work, though all I have done
:to test this is run the exploit script that was sent to bugtraq.
:
:I have also run the patch against a 2.2.8 box successfully (and recompiled
:the kernel), though have yet to reboot to the box to be sure it works.
:
:The actual code in the patch below is identical to the one that was
:released for 3.2 (just manually inserted instead of using patch). Like I
:said, it appears to work here, though I make no guarentees to anyone that
:this is the best or correct way to patch the 2.2.x kernels for this bug.
Excelllent! I am going to wait a maximum of a few days to see if my
old ISP gets the patch in to give us some corroboration, then will commit
this into the 2.2.x tree.
-Matt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200001250209.SAA94595>