Full Disclosure mailing list archives
Re: linux procfs vulnerablity
From: Karl Janmar <karl () utopiafoundation org>
Date: Sat, 24 Dec 2005 12:00:22 +0700
The arch is x86 and I ignore the rest of your comments, maybe you have to think a little more?
- karl coderman wrote:
On 12/23/05, Karl Janmar <karl () utopiafoundation org> wrote:... I have found one flaw in Linux procfs code that make the kernel disclose memory.i'd love to see you exploit this! rly!fs/proc/proc_misc.c:74 ... if (len <= off+count) *eof = 1; ... off is a off_t and count is a int.what arch? on intel assign a s32 to int? the sky is falling...
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- linux procfs vulnerablity Karl Janmar (Dec 23)
- Re: linux procfs vulnerablity coderman (Dec 23)
- Re: linux procfs vulnerablity Karl Janmar (Dec 24)
- Re: linux procfs vulnerablity GroundZero Security (Dec 24)
- Re: linux procfs vulnerablity Karl Janmar (Dec 24)
- Re: linux procfs vulnerablity coderman (Dec 23)