[rsbac] Fwd: Re: Will 2.4.20 Source be patched for the latest kernel vulnerability?

Dmitry V. Levin ldv at altlinux.org
Tue Dec 2 14:27:20 CET 2003


On Tue, Dec 02, 2003 at 02:15:58PM +0100, Amon Ott wrote:
> Just found a workaround for the 2.4 sys_brk bug. It seems sufficient to limit 
> the address space to max. 2GB, e.g. using RSBAC RES module:

No, it is not sufficient, sorry.

There is nothing in RSBAC which prevents the binary to be linked at a higher
address, right?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://www.rsbac.org/pipermail/rsbac/attachments/20031202/1e950244/attachment.bin

More information about the rsbac mailing list