[kernel-sec-discuss] Ubuntu's CVE-2006-4538 backport
dann frazier
dannf at debian.org
Sat Nov 11 00:31:57 CET 2006
hey,
I decided to compare my backport of CVE-2006-4538 to sarge's 2.6.8
with Ubuntu's backport to hoary's 2.6.10, and I think I've detected a
problem with the sparc64 part of Ubuntu's backport.
It looks like the backport took the upstream version of
sparc64_mmap_check(), which includes references to STACK_TOP32 and
invalid_64bit_range that (afaict) weren't defined in 2.6.10.
--
dann frazier
More information about the kernel-sec-discuss
mailing list