On Wed, Mar 26, 2003 at 10:01:59PM +0100, David Huecking wrote:
For me it only works for SuSE Kernel 2.4.16-4GB delivered for SuSE 7.3. 2.4.18-4GB of 8.0 and 2.4.19-4GB of 8.1 seem to be "safe" against THIS particular exploit. (All the "old" unpatched versions...) Does anybody have an exploit for these kernels?
no. this exploit works. but since it exploits a race, it may need many tries or a different timing on fast cpus. on one SuSE 8.1 here it _seemed_ not to work at first (ran for minutes). I inserted some fprintf's (thus altered the timing), and whoops, second try succeeds. new kernel from SuSE (or kernel.org 2.4.20 with patch) solves this. If suse tells you to upgrade the kernel to avoid a local root exploit, I think you should do so. they won't tell you to, if their kernel was not vulnerable. Lars