patch – Phocean.net / Computer Security Blog Fri, 24 Feb 2017 21:17:51 +0000 en-US hourly 1 https://wordpress.org/?v=4.9.10 openSUSE kernel sources : patching against sock_sendpage() NULL Pointer Dereference vulnerability /2009/08/17/opensuse-kernel-sources-patching-against-sock_sendpage-null-pointer-dereference-vulnerability.html /2009/08/17/opensuse-kernel-sources-patching-against-sock_sendpage-null-pointer-dereference-vulnerability.html#comments Mon, 17 Aug 2009 12:47:34 +0000 http://www.phocean.net/?p=405 http://www.phocean.net/?p=405 Continue Reading]]> I am using the 2.6.30 kernel sources from Kernel:linux-next and noticed that it has not yet been patched against the ’sock_sendpage()’ NULL Pointer Dereference vulnerability.

The threat is serious as it could allow a local user to gain root privileges.

Those who compile their own 2.6.x kernel should apply this patch (from Linus, check there for more info) .

Within your kernel source folder :

$ patch -u -p0 < sock_sendpage.patch

I hope an official patch will be released soon for all kernels. I did not check if the 11.1 kernel has already been patched or not.

]]> /2009/08/17/opensuse-kernel-sources-patching-against-sock_sendpage-null-pointer-dereference-vulnerability.html/feed 2 Yersinia : patch to compile under openSUSE (11.1) /2009/06/14/yersinia-patch-to-compile-under-opensuse-11-1.html /2009/06/14/yersinia-patch-to-compile-under-opensuse-11-1.html#comments Sun, 14 Jun 2009 19:25:34 +0000 http://www.phocean.net/?p=391 http://www.phocean.net/?p=391 Yet another post in the series of compilation failures due to unexpected libraries paths.

This time, it is about Yersinia and the ncurses library. I made the following yersinia-opensuse11.1 patch which should work for openSUSE 11.1 and maybe other versions or distros.

]]> /2009/06/14/yersinia-patch-to-compile-under-opensuse-11-1.html/feed 3