Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
cve_2016_0728 not fully fixed in 4.3.3-hardened-r7 ?
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware
View previous topic :: View next topic  
Author Message
toralf
Developer
Developer


Joined: 01 Feb 2004
Posts: 3653
Location: Hamburg

PostPosted: Wed Jan 20, 2016 5:01 pm    Post subject: cve_2016_0728 not fully fixed in 4.3.3-hardened-r7 ? Reply with quote

compiled the exploit of https://gist.github.com/PerceptionPointTeam/18b1e86d1c0f8531ff8f - but do land not in back in my bash, but in a shell instead:
Code:
tfoerste@t44 ~/tmp $ ./cve_2016_0728 bla; date
uid=1000, euid=1000
Increfing...
finished increfing
forking...
finished forking
caling revoke...
uid=1000, euid=1000
sh-4.3$ whoami
tfoerste
sh-4.3$ exit
exit
Wed Jan 20 17:58:21 CET 2016

expected ?
Update: -r6 prevented my hardened system from suffering from that issue - tested it, PaX worked fine, but with -r6 I was back in my current bash shell after PaX jumped in. The version -r7 has the official patch incorporated by spengler, so I do wonder about the different behaviour now.


Last edited by toralf on Sat Jan 23, 2016 10:17 am; edited 1 time in total
Back to top
View user's profile Send private message
khayyam
Watchman
Watchman


Joined: 07 Jun 2012
Posts: 6228
Location: Room 101

PostPosted: Wed Jan 20, 2016 8:28 pm    Post subject: Re: cve_2016_0728 not fully fixed in 4.3.3-hardened-r7 ? Reply with quote

toralf wrote:
expected?

toralf ... that depends on if you were expecting "security experts" to know what linux is, and what exactly is "built into the various flavors of Linux". I'd advise you to play Abba's Dancing Queen at some volume, stare into a mirror'ed disco ball, do a silly dance ... and then forget all about it ;)

souce ... in case anyone wonders what this is all about.

edit: and btw, grsecurity/PaX does prevent the exploit.

best ... khay
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum