[32731] in bugtraq
Re: Hot fix for do_brk bug
daemon@ATHENA.MIT.EDU (=?ISO-8859-2?Q?Pavel_harry=5Fx_Pal)
Mon Dec 8 12:18:28 2003
Date: Sat, 6 Dec 2003 19:51:58 +0100 (CET)
From: =?ISO-8859-2?Q?Pavel_harry=5Fx_Pal=E1t?= <harry_x@babylon5.cz>
To: bugtraq@securityfocus.com
In-Reply-To: <3FD0F92F.6090909@trustcenter.de>
Message-ID: <Pine.LNX.4.58.0312061927050.7490@orodruina.lan>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=ISO-8859-2
Content-Transfer-Encoding: 8bit
> It would be less intrusive to the kernel to supply a fixed do_brk()
> and replace the do_brk with a jump to your version.
I've written similar patch few days ago. The patch only modifies first
instructions of do_brk() (it replaces them with jmp to function in LKM.
It can be downloaded from http://wizard.ath.cx/fixbrk.tar.gz
But beware, I wrote it in rush and it's pretty odly written :-) But it
worked on my two servers (both were running 2.4.21 kernel with grsecurity
patch).
Greetings
Pavel Palát
--
Pavel "harry_x" Palát
harry_x@babylon5.cz
irc: #mistral.cz on IRCnet
The only way of finding the limits to the possible is by going beyond them to the impossible
Arthur C. Clark
