[kernel-sec-discuss] r5369 - active
Nicholas Luedtke
nluedtke-guest at moszumanska.debian.org
Mon Jun 19 18:59:01 UTC 2017
Author: nluedtke-guest
Date: 2017-06-19 18:59:01 +0000 (Mon, 19 Jun 2017)
New Revision: 5369
Modified:
active/CVE-2017-1000370
active/CVE-2017-1000371
Log:
Add notes to CVE-2017-100037{0,1}
Modified: active/CVE-2017-1000370
===================================================================
--- active/CVE-2017-1000370 2017-06-19 15:42:01 UTC (rev 5368)
+++ active/CVE-2017-1000370 2017-06-19 18:59:01 UTC (rev 5369)
@@ -1,6 +1,10 @@
-Description:
+Description: a local-root exploit against ld.so and most SUID-root binaries
References:
+ https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
Notes:
+ nsl> Looks to be introduced upstream with commit d1fd836dcf00
+ nsl> "mm: split ET_DYN ASLR from mmap ASLR" in 4.1-rc1. This was seemly
+ nsl> added to jessie with patch mm-split-et_dyn-aslr-from-mmap-aslr.patch
Bugs:
upstream:
4.9-upstream-stable:
Modified: active/CVE-2017-1000371
===================================================================
--- active/CVE-2017-1000371 2017-06-19 15:42:01 UTC (rev 5368)
+++ active/CVE-2017-1000371 2017-06-19 18:59:01 UTC (rev 5369)
@@ -1,6 +1,10 @@
-Description:
+Description: a local-root exploit against ld.so and most SUID-root PIEs
References:
+ https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
Notes:
+ nsl> Looks to be introduced upstream with commit d1fd836dcf00
+ nsl> "mm: split ET_DYN ASLR from mmap ASLR" in 4.1-rc1. This was seemly
+ nsl> added to jessie with patch mm-split-et_dyn-aslr-from-mmap-aslr.patch
Bugs:
upstream:
4.9-upstream-stable:
More information about the kernel-sec-discuss
mailing list