[CentOS] Root exploit in the wild
Ralph Angenendt
ralph at centos.org
Sun Feb 10 23:39:47 UTC 2008
Ralph Angenendt schrieb:
> Warning: There's a "dexploit"-exploit out there (an exploit which looks
> if the kernel is exploitable and then disables vmsplice() - or at least
> tries to) - don't use that. It doesn't work on CentOS 5. The original
> exploit seems to crash xen-DomUs - the deexploit succeeds in *not*
> crashing the kernel so that the exploit now also works on DomUs.
<https://bugzilla.redhat.com/show_bug.cgi?id=432251#c10> looks
interesting though - if you need a patch "at once".
Cheers,
Ralph
More information about the CentOS
mailing list