Full Disclosure mailing list archives

Re: Linux kernel uselib() privilege elevation, corrected

From: Henrik Persson <nix () syndicalist net>
Date: Mon, 10 Jan 2005 03:16:44 +0100

Christian wrote:

Karol Wiesek schrieb:
 > [appelast@nesquik appelast]$ ./ex -l ./lib

[+] SLAB cleanup
   child 1 VMAs 65527


[...]

strange, it does not even compile here:

evil@prinz:~/dev/$ gcc -O2 -fomit-frame-pointer elflbl.c -o elflbl
elflbl_v108.c: In function `scan_mm_start':
elflbl_v108.c:425: error: storage size of `l' isn't known
elflbl_v108.c:425: error: storage size of `l' isn't known
elflbl_v108.c: In function `check_vma_flags':
elflbl_v108.c:545: warning: deprecated use of label at end of compound
statement

In linux 2.6 the modify_ldt_ldt_s structure is renamed to user_desc.Change that on row 425 and it will compile.


--
Henrik Persson
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Linux kernel uselib() privilege elevation, corrected Paul Starzetz (Jan 07)
- Re: Linux kernel uselib() privilege elevation, corrected Frank Dietrich (Jan 08)
  - Re: Linux kernel uselib() privilege elevation, corrected Karol Wiesek (Jan 08)
    - Re: Linux kernel uselib() privilege elevation, corrected Christian (Jan 09)
    - Re: Linux kernel uselib() privilege elevation, corrected Henrik Persson (Jan 09)
    - Re: Linux kernel uselib() privilege elevation, corrected Jason Carr (Jan 09)
- <Possible follow-ups>
- Re: Linux kernel uselib() privilege elevation, corrected Marcy Darcy (Jan 11)
  - Re: Linux kernel uselib() privilege elevation, corrected Athanasius (Jan 11)
    - Re: Linux kernel uselib() privilege elevation, corrected Gaz Wilson (Jan 11)
    - Re: Linux kernel uselib() privilege elevation, corrected steve menard (Jan 11)