New Linux Flaw Enables Null Pointer Exploits

Robert Brockway robert-5LEc/6Zm6xCUd8a0hrldnti2O/JbrIOy at
Sat Jul 18 16:58:44 UTC 2009

On Sat, 18 Jul 2009, Jamon Camisso wrote:

> It is an interesting bug because it is a compiler related optimization that 
> creates the conditions necessary to exploit it.

Yes. Unfortunately compiler optimisation bugs are more common that a lot 
of people expect.  They are very frustrating as a review of the source 
code won't reveal the bug.  Only testing or a review of the binary will.

> I doubt many people are running 2.6.30/, and even fewer with 
> SELinux/AppArmor etc. Pretty niche, but a great discovery on the researcher's 
> part.

Agreed.   If this is found to exploit earlier versions it could be bad.

I just watched this

Based on that it is a local root exploit.  Since it is in the net/tun 
code I was a bit concerned it might be remotely exploitable.



I tried to change the world but they had a no-return policy
Projected IPv4 exhaustion:
The Toronto Linux Users Group.      Meetings:
TLUG requests: Linux topics, No HTML, wrap text below 80 columns

More information about the Legacy mailing list