18 Mar 2003 madhatter   » (Journeyer)

Linux 2.4.x ptrace exploit

what a doozy, and I didn't want to have to run a 2.5 kernel... so i tried some things. Solar Designer happens to have a experimental security patch for 2.4.20 (www.openwall.com), but unfortunately it didn't stop the exploit from working. Next, St. Jude (sf.net/projects/stjude). I've had success with using St. Jude before, and it seems to stop this exploit from working. I also tested some other recent security problems (xfree86 XLOCALEDIR env overflow, and cupsd remote overflow) and it was able to stop BOTH of them from working. Good job Tim Lawless.

Latest blog entries     Older blog entries

New Advogato Features

New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.

Keep up with the latest Advogato features by reading the Advogato status blog.

If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!