maemo.org - Talk - < 2.6.30.2 kernel security

maemo.org - Talk (https://talk.maemo.org/index.php)

- Maemo 5 / Fremantle (https://talk.maemo.org/forumdisplay.php?f=40)

- - < 2.6.30.2 kernel security (https://talk.maemo.org/showthread.php?t=32968)

R-R	2009-10-16 15:30

< 2.6.30.2 kernel security

http://www.youtube.com/watch?v=UdkpJ13e6Z0

I was wondering if the major root exploit that was found 2 months ago was fixed on the n900 kernel?

Since it's running 2.6.28 it might not be... Hopefully we can get 2.6.31 by december with all the updates?

ArnimS

2009-10-22 08:11

Re: < 2.6.30.2 kernel security

replace "major" with "local". more information in same amount of words.

corsac

2009-10-22 08:24

Re: < 2.6.30.2 kernel security

If someone on the device can check the value of vm.mmap_min_addr that would help.

As I don't think pulseaudio is used on the device, nor SELinux/AppArmor, the only way to exploit this would be to be able to map something at address 0.

ruskie

2009-10-22 10:11

Re: < 2.6.30.2 kernel security

iirc pulseaudio is used.

lma	2009-10-22 15:07

Re: < 2.6.30.2 kernel security

Quote:

Originally Posted by R-R (Post 348526)

I was wondering if the major root exploit that was found 2 months ago was fixed on the n900 kernel?

Yes, http://repository.maemo.org/pool/fre...08+0m5.diff.gz does contain the patch.

Quote:

Since it's running 2.6.28 it might not be... Hopefully we can get 2.6.31 by december with all the updates?

I think it's very unlikely that Fremantle will see anything other than 2.6.28. Backports of specific patches are a different thing of course.

lma	2009-10-22 15:15

Re: < 2.6.30.2 kernel security

Quote:

Originally Posted by corsac (Post 355090)

If someone on the device can check the value of vm.mmap_min_addr that would help.

Code:

Nokia-N900-41-10:~# cat /proc/sys/vm/mmap_min_addr 

4096

All times are GMT. The time now is 06:40.

vBulletin® Version 3.8.8