Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

doesn't work: CVE-2016-8655 Linux af_packet.c race condition
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
toralf
Developer
Developer


Joined: 01 Feb 2004
Posts: 3922
Location: Hamburg
PostPosted: Thu Dec 08, 2016 10:19 am    Post subject: doesn't work: CVE-2016-8655 Linux af_packet.c race condition Reply with quote
Hi,
at my system I can't get that exploit (http://seclists.org/oss-sec/2016/q4/621) to succeeded under a vanilla kernel 4.9-rc7 (hardened even more not). I do always get:
Code:
linux AF_PACKET race condition exploit by rebel
i have no offsets for this kernel version..
kernel version: 4.9.0-rc7 #1 SMP Thu Dec 8 10:19:36 CET 2016

Are there any other preconditions I do have to met ?
Back to top
View user's profile Send private message
Apheus
Guru
Guru


Joined: 12 Jul 2008
Posts: 422
PostPosted: Thu Dec 08, 2016 10:26 am    Post subject: Reply with quote
From the source:

Code:
struct offset offsets[] = {
    {"4.4.0-46-generic #67~14.04.1",0xffffffff810842f0,0xffffffff81e4b100,0xffffffff81274580,0xffffffff8106b880},
    {"4.4.0-47-generic #68~14.04.1",0,0,0,0},
    {"4.2.0-41-generic #48",0xffffffff81083470,0xffffffff81e48920,0xffffffff812775c0,0xffffffff8106c680},
    {"4.8.0-22-generic #24",0xffffffff8108ab70,0xffffffff81e47880,0xffffffff812b34b0,0xffffffff8106f0d0},
   ...


These are necessary data, different for every kernel, and have only been collected for ubuntu kernels. You would have to find the offsets for a given custom kernel. I would like to know too how this can be done.
_________________
My phrenologist says I'm stupid.
Back to top
View user's profile Send private message
kernelOfTruth
Watchman
Watchman


Joined: 20 Dec 2005
Posts: 6111
Location: Vienna, Austria; Germany; hello world :)
PostPosted: Mon Dec 26, 2016 6:58 pm    Post subject: Reply with quote
+1
_________________
https://github.com/kernelOfTruth/ZFS-for-SystemRescueCD/tree/ZFS-for-SysRescCD-4.9.0
https://github.com/kernelOfTruth/pulseaudio-equalizer-ladspa

Hardcore Gentoo Linux user since 2004 :D
Back to top
View user's profile Send private message
derk
Guru
Guru


Joined: 10 Mar 2003
Posts: 347
Location: St Thomas Ontario
PostPosted: Tue Dec 27, 2016 11:58 am    Post subject: Reply with quote
doesn't the 4.9.0 kernel have the fix patch in place? or is this rc before the patch (dec 2,2016) release?
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy