SCIENTIFIC-LINUX-DEVEL Archives

October 2016

SCIENTIFIC-LINUX-DEVEL@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Sender:
Mailing list for Scientific Linux developers worldwide <[log in to unmask]>
Date:
Mon, 24 Oct 2016 22:13:02 +0200
Reply-To:
Valentin B <[log in to unmask]>
Message-ID:
<[log in to unmask]>
Subject:
Re: Cowroot vulnerability
From:
Valentin B <[log in to unmask]>
Content-Type:
multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="s7uK1MLfEK5goUXk1Vn7r5SIiFsDJp5s6"
In-Reply-To:
<[log in to unmask]>
MIME-Version:
1.0
Comments:
To: Pat Riehecky <[log in to unmask]>
Parts/Attachments:
text/plain (872 bytes) , signature.asc (834 bytes) 
Hi Pat,

If this patch / fix was applied to kernel 3.10.0-327.36.3.el7.x86_64
then it seems to me more of a mitigation / blocker instead.

The patch applied to 4.7.9-200.fc24.x86_64 on Fedora 24 seems more of a
proper fix.  The cowroot vulnerability doesn't get the chance to be
executed at all.

Best regards,
Valentin

On 10/24/2016 06:02 PM, Pat Riehecky wrote:
> Published
> 
> On 10/24/2016 09:09 AM, Pat Riehecky wrote:
>> Updated packages for SL7 are currently compiling.
>>
>> Pat
>>
>> On 10/22/2016 11:02 AM, Valentin B wrote:
>>> Hi,
>>>
>>> Are there patches already available for the following exploits?
>>>
>>> https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs
>>>
>>>

-- 
Valentin Bajrami
Kapteyn Astronomical Institute
University of Groningen
Postbus 800
NL-9700 AV Groningen
The Netherlands
Phone: +31-(0)50-3634068


PGP Fingerprint: 50D7 E233 C2E0 1C81 BB7F F8D8 E51B CF89 A52E 5271

ATOM RSS1 RSS2