oss-sec mailing list archives

Re: Qualys Security Advisory - Linux PIE/stack corruption (CVE-2017-1000253)

From: Qualys Security Advisory <qsa () qualys com>
Date: Tue, 3 Oct 2017 10:08:20 -0700

Hi all,

On Tue, Sep 26, 2017 at 08:08:25AM -0700, Qualys Security Advisory wrote:

As a proof-of-concept, we will publish CVE-2017-1000253.c


Since CentOS 7 patched this vulnerability on September 13, 2017 (release
1708), we attached our CVE-2017-1000253.c exploit for CentOS-7 kernel
versions "3.10.0-514.21.2.el7.x86_64" and "3.10.0-514.26.1.el7.x86_64"
to this email (alternatively, this exploit is also available at
https://www.qualys.com/research/security-advisories/).

Thank you very much!  With best regards,

-- 
the Qualys Security Advisory team

Attachment: CVE-2017-1000253.c
Description:

Current thread:

Re: Qualys Security Advisory - Linux PIE/stack corruption (CVE-2017-1000253) Jan Schaumann (Oct 03)
- Re: Qualys Security Advisory - Linux PIE/stack corruption (CVE-2017-1000253) Kurt Seifried (Oct 03)
- <Possible follow-ups>
- Re: Qualys Security Advisory - Linux PIE/stack corruption (CVE-2017-1000253) Qualys Security Advisory (Oct 03)