[Full-Disclosure] Re: i386 Linux kernel DoS

From: Jim Paris (jimat_private)
Date: Wed Nov 13 2002 - 08:58:46 PST

Next message: Paul Szabo: "[Full-Disclosure] Eudora 5.2 attachment spoof"

Previous message: Martin Schulze: "[SECURITY] [DSA 195-1] New Apache-Perl packages fix several vulnerabilities"
In reply to: Christophe Devine: "i386 Linux kernel DoS"
Next in thread: Leif Sawyer: "RE: i386 Linux kernel DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>     char dos[] = "\x9C"                           /* pushfd       */
>                  "\x58"                           /* pop eax      */
>                  "\x0D\x00\x01\x00\x00"           /* or eax,100h  */
>                  "\x50"                           /* push eax     */
>                  "\x9D"                           /* popfd        */
>                  "\x9A\x00\x00\x00\x00\x07\x00";  /* call 07h:00h */

Has anyone come up with a hotfix for this (eg, a kernel module to
temporarily patch the hole)?  Where was this bug fixed in 2.4.19?  The
CHECK_IF_IN_TRAP stuff in handle_vm86_fault?

-jim
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Paul Szabo: "[Full-Disclosure] Eudora 5.2 attachment spoof"
Previous message: Martin Schulze: "[SECURITY] [DSA 195-1] New Apache-Perl packages fix several vulnerabilities"
In reply to: Christophe Devine: "i386 Linux kernel DoS"
Next in thread: Leif Sawyer: "RE: i386 Linux kernel DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Nov 13 2002 - 09:44:18 PST