Pretty scary stuff, even if you trust all of your users:
victor@mercury ~ $ ./exploit ----------------------------------- Linux vmsplice Local Root Exploit By qaaz ----------------------------------- [+] mmap: 0x100000000000 .. 0x100000001000 [+] page: 0x100000000000 [+] page: 0x100000000038 [+] mmap: 0x4000 .. 0x5000 [+] page: 0x4000 [+] page: 0x4038 [+] mmap: 0x1000 .. 0x2000 [+] page: 0x1000 [+] mmap: 0x2ac3dee3c000 .. 0x2ac3dee6e000 [+] root mercury ~ # whoami root
What's really amazing is that news of this vulnerability didn't really hit the mainstream web until today, but yet on Friday there was already a kernel patch. There's even an in-memory hotfix that you can use (I tried that too - it works) if you prefer to wait until an official kernel makes it downstream. Open source is amazing.
Had this been proprietary software, no one would have known about it except for the all the people exploiting it. Servers all over the world would get owned, and the software company wouldn't even discover it for a few more weeks. Or worse, they would know about it, but would hope to keep it hush-hush until the next Patch Tuesday.
Recent comments
20 hours 34 min ago
20 hours 38 min ago
21 hours 43 sec ago
2 days 17 hours ago
4 days 21 hours ago
5 days 12 hours ago
5 days 17 hours ago
4 weeks 2 days ago
5 weeks 22 hours ago
6 weeks 1 day ago