Linux Kernel 2.6 Local Root Exploit 586
aquatix writes "This local root exploit (Debian, Ubuntu) seems to work everywhere I try it, as long as it's a Linux kernel version 2.6.17 to 2.6.24.1. If you don't trust your users (which you shouldn't), better compile a new kernel without vmsplice." Here is millw0rm's proof-of-concept code.
The sound you hear... (Score:5, Funny)
jessica_biel_naked_in_my_bed.c ? (Score:5, Funny)
Thank God (Score:5, Funny)
Re:Thank God (Score:5, Funny)
Re:Thank God (Score:5, Funny)
I know what you mean. It's nice not having to freak out periodically like this since you live in a constant state of panic anyway.
Re:Beauty of OSS (Score:2, Funny)
Re:Misleading (Score:5, Funny)
Which reminds me, have you done your emerge -abuop6QvvvvVVvVVxz world yet today?
Re:jessica_biel_naked_in_my_bed.c ? (Score:1, Funny)
Re:jessica_biel_naked_in_my_bed.c ? (Score:5, Funny)
You need to include justin_timberlake.h and link it with the millionaires library.
Re:Thank God (Score:2, Funny)
Re:jessica_biel_naked_in_my_bed.c ? (Score:5, Funny)
Re:Beauty of OSS (Score:2, Funny)
And smack them in the face.
Re:Is this x86/x86_64 only? (Score:3, Funny)
I heard that the Debian Architecture group are working through the night to ensure it will work on *all* of their supported platforms. Should be on your favourite mirror by Monday lunchtime !!
Re:Thank God (Score:2, Funny)
Re:Beauty of OSS (Score:1, Funny)
Re:Beauty of OSS (Score:5, Funny)
Re:Misleading (Score:5, Funny)
Re:Before the inevitable occurs: (Score:4, Funny)
Re:Just fixed it. (Score:3, Funny)
Re:Beauty of OSS (Score:3, Funny)
Allow me to past in the first couple of lines:
Apparently, milw0rm does have a patch for that.
Re:ssh (Score:4, Funny)
Re:Beauty of OSS (Score:5, Funny)
However, bricks = shat.
Come on now, that simply assigns shat to bricks (and that's some nasty use of the comma operator to separate statements). I think you meant:
Note that we don't have to dispose of the bricks we shit, as that's taken care of elsewhere. And of course, if we all still wrote VAX assembler we would be able to optimise this by using the SHTBRCKS instruction.
Re:HA HA (Score:2, Funny)
| PLEASE |
| DO NOT |
| FEED THE |
| TROLLS |
+--------------+
| |
Re:'Sploit needs fixing on x86-64 (Score:3, Funny)
$ gcc -o jessica_biel_naked_in_my_bed jessica_biel_naked_in_my_bed.c
jessica_biel_naked_in_my_bed.c:138:2: error: #error "unsupported arch"
jessica_biel_naked_in_my_bed.c: In function 'kernel_code':
jessica_biel_naked_in_my_bed.c:159: warning: initialization makes pointer from integer without a cast
jessica_biel_naked_in_my_bed.c: In function 'main':
jessica_biel_naked_in_my_bed.c:211: error: 'PAGE_SIZE' undeclared (first use in this function)
jessica_biel_naked_in_my_bed.c:211: error: (Each undeclared identifier is reported only once
jessica_biel_naked_in_my_bed.c:211: error: for each function it appears in.)
$ gcc -o 27704-2 27704-2.c
Bloody x86-asm. Doesn't work on Sparc.
Re:Beauty of OSS (Score:4, Funny)
Re:Beauty of OSS (Score:3, Funny)
Re:Beauty of OSS (Score:3, Funny)