oss-sec mailing list archives

Re: Linux kernel futex local privilege escalation (CVE-2014-3153)

From: mancha <mancha1 () zoho com>
Date: Sat, 7 Jun 2014 19:40:56 +0000

On Fri, Jun 06, 2014 at 07:37:03AM +0200, Thomas Gleixner wrote:


They should apply cleanly, if all stable tagged futex patches before
that are applied.


I've placed a consolidated CVE-2014-3153 patch for 3.10.x at:

http://sf.net/projects/mancha/files/sec/linux-3.10.41_CVE-2014-3153.diff

Note: applies with trivial offsets to <3.10.37 due to f26c70a4.

--mancha

Attachment: _bin
Description:

Current thread:

Re: Linux kernel futex local privilege escalation (CVE-2014-3153), (continued)
- - - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Thomas Gleixner (Jun 05)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) rf (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Greg KH (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) rf (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Greg KH (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) rf (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Rich Felker (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Greg KH (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Rich Felker (Jun 06)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) Thomas Gleixner (Jun 07)
    - Re: Linux kernel futex local privilege escalation (CVE-2014-3153) mancha (Jun 07)