From nobody Fri Mar 29 02:18:04 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Received: from mout.gmx.com (mout.gmx.com [74.208.4.201]) by lists.alpinelinux.org (Postfix) with ESMTP id 3B9145C4349; Fri, 21 Oct 2016 10:00:32 +0000 (GMT) Received: from [127.0.0.1] ([178.0.53.68]) by mail.gmx.com (mrgmxus001) with ESMTPSA (Nemesis) id 0MEFV0-1c8W2A10gK-00FUki; Fri, 21 Oct 2016 12:00:30 +0200 X-Priority: 3 To: kevingallagher@gmail.com Cc: alpine-devel@lists.alpinelinux.org,ncopa@alpinelinux.org From: 7heo <7heo@mail.com> Subject: Re: [alpine-devel] CVE-2016-5195: Local privilege escalation exploit in Linux kernel In-Reply-To: References: <20161021103807.707115f3@ncopa-desktop.copa.dup.pw> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: base64 Date: Fri, 21 Oct 2016 10:00:27 +0000 Message-ID: <9k46rq.ofe6gu.1hge1d2-qmf@gmx.com> X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 X-Provags-ID: V03:K0:7iq4CYvQrCYj311w7LhbDxJ8Lh3IcJVAbnLbyH0f4APqGTi1qz/ M7McaqA1dj3LQjfSs1qM1zCCsuTmisbo4gXmOZ1tvzfv1iBtOwtoFF0Lr1hTptQFtmDaFjY 1b/7Mfo2ohmXFAWP4KwhJXzyFDUPPbcSQ7+6nlcP5BM1Ng2JXHTOgdTsZ57ZO5hQpHeJl5N 9YB0A3kqxCFrVfJrqsoaQ== X-UI-Out-Filterresults: notjunk:1;V01:K0:yxdaNj33NAA=:sotrUzKMhRkS4mWZNVwjqX 9iUqKAfMgu6S9sgCsx2VlZZVBVIi2p7fuo4fl7a3T6VHEQWtlBAQNzcS+A+7nXxVbl1CQMZOb lBkJovVK7yCuTY7pbpIuVkXGxfOq85eZE9VWuCnd/qJsubufrAfCCvw1OJxRY56EkEaNfyUXk OJa8IzyPH4ILU8fIOH47NhGtj0InZ6WBPxw4QMw5TsvWv15EDBFXDAsqK79jkbkov97Id2P1v vDDPEPPCWDXGMX0ERnL+0UhBAtpsNAXr+otV2SHEZYv7lq4VkkBud/gXdXY0biVgeKZLX6hLp UKLiS6/bGrcOaqDj038dAVDNm+WlO0iysx/inulAbwzJWP0yjUrEbKhl60Fku+elRaGvif2N+ ikpLdvfPT3dyot4pG2UpNbIP5NZ7Bm8RBpHaea419d3Uk/w8Z/rrmtxVMyC4TiQJ0/5OyVAwt kZYeF0tqdkM4WrPo/6hB2m3mCeQIuRgTp3/X2qyofYN434OFAKs+8HcP/bXzpKQHCftTvWUwI CNZrpTdSD9FTfrHZFKfiLe7Y5c9H42OfSXMcjFziJ5GlfncHXKvlrifAn4AtU84WdGr4CD0A1 mj+DFjslOg1ev5GOzaBGTbeRar2k4hW+prOo5MoBQQ5MbDyej3rrSC0NkmFi8/ENq644CbA86 PvxR/YlMsR6x1nOrvBXcRZZLFriOo6mNRUQEpz+mmJSnsOTfUHO5nbqrSHHMr0cUpg6wOgY9J 4CNVLNHronXoKao8nf8WHOuzrlvGXnmIDjBCnh4WAacpKCY04MKzz6W8Jsj4Uzo1H2oieAnlc 0gy/rwJ Q291bGQgaXQgYmUgdGhhdCAvcHJvYy9zZWxmL21lbSBpcyBhbHNvIG5vdCB3cml0YWJsZSBpbiBh bHBpbmU/DQoNCk9uIEZyaSBPY3QgMjEgMTE6MjM6NDAgMjAxNiBHTVQrMDIwMCwgS2V2aW4gTS4g R2FsbGFnaGVyIHdyb3RlOg0KPiBJIGp1c3QgdHJpZWQgdG8gZXhlY3V0ZSB0aGUgcHJvb2Ytb2Yt Y29uY2VwdCBvbiBBbHBpbmUsIGFuZCBpdCBkaWRuJ3Qgd29yaw0KPiAodGhlIGZpbGUgaXMgc3Vw cG9zZWQgdG8gYmUgb3ZlcndyaXR0ZW4pLiBObyBncnNlYyBtZXNzYWdlcyBsb2dnZWQsIGJ1dCBJ DQo+IGZpZ3VyZSBtYXliZSBpdCdzIG5vdCBlZmZlY3RpdmUgdW5kZXIgZ3JzZWN1cml0eSBmb3Ig c29tZSByZWFzb24uIFN0aWxsIGENCj4gZ29vZCBpZGVhIHRvIHBhdGNoIGFueXdheS4uLg0KPiAN Cj4gT24gRnJpLCBPY3QgMjEsIDIwMTYgYXQgMTo1MCBBTSwgS2V2aW4gTS4gR2FsbGFnaGVyIDwN Cj4ga2V2aW5nYWxsYWdoZXJAZ21haWwuY29tPiB3cm90ZToNCj4gDQo+ID4gR3JlYXQgdG8gaGVh ci4gVGhhbmtzIGEgbG90LCBOYXRhbmFlbCENCj4gPg0KPiA+IE9uIEZyaSwgT2N0IDIxLCAyMDE2 IGF0IDE6MzggQU0sIE5hdGFuYWVsIENvcGEgPG5jb3BhQGFscGluZWxpbnV4Lm9yZz4NCj4gPiB3 cm90ZToNCj4gPg0KPiA+PiBPbiBUaHUsIDIwIE9jdCAyMDE2IDIxOjUzOjAzIC0wNzAwDQo+ID4+ ICJLZXZpbiBNLiBHYWxsYWdoZXIiIDxrZXZpbmdhbGxhZ2hlckBnbWFpbC5jb20+IHdyb3RlOg0K PiA+Pg0KPiA+PiA+IERldGFpbHM6DQo+ID4+ID4NCj4gPj4gPiBodHRwOi8vZGlydHljb3cubmlu amEvDQo+ID4+ID4gaHR0cHM6Ly9sa21sLm9yZy9sa21sLzIwMTYvMTAvMTkvODYwDQo+ID4+ID4N Cj4gPj4gPiBQcm9vZiBvZiBjb25jZXB0Og0KPiA+PiA+IGh0dHBzOi8vZ2l0aHViLmNvbS9kaXJ0 eWNvdy9kaXJ0eWNvdy5naXRodWIuaW8vYmxvYi9tYXN0ZXIvZGlydHljMHcuYw0KPiA+PiA+DQo+ ID4+ID4gSSdtIHVzaW5nIEFscGluZSBMaW51eCBmb3IgYSB0aW1lLXVyZ2VudCBhbmQgc2VjdXJp dHktY3JpdGljYWwgcHJvamVjdA0KPiA+PiA+IGhhcHBlbmluZyB0aGlzIHdlZWtlbmQsIGFuZCB3 b3VsZCByZWFsbHkgbGlrZSB0byBzZWUgdGhpcyBmaXhlZC4NCj4gPj4gSG93ZXZlciwNCj4gPj4g PiBJJ20gbm90IGZhbWlsaWFyIHdpdGggYXBvcnRzIG9yIHRoZSB3YXkgeW91IGJ1aWxkIGtlcm5l bHMgaW4gQWxwaW5lLiBJcw0KPiA+PiA+IGFueW9uZSBhdmFpbGFibGUgdG8gdXBkYXRlIHRoZSBr ZXJuZWwgaW4gbGludXgtZ3JzZWMgaW4gdGhlIDMuNC1zdGFibGUNCj4gPj4gPiBicmFuY2ggYW5k L29yIGJhY2twb3J0IHRoZSBwYXRjaCwgc29tZXRpbWUgc29vbj8NCj4gPj4NCj4gPj4gWWVzLiBV cGRhdGVkIGtlcm5lbHMgd2lsbCBiZSBhdmFpbGFibGUgd2l0aCBhbiBob3VyIG9yIHR3by4gQXQg bGVhc3QNCj4gPj4gZm9yIGVkZ2UgYW5kIHYzLjQuDQo+ID4+DQo+ID4+IC1uYw0KPiA+Pg0KPiA+ DQo+ID4NCj4= --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Fri Mar 29 02:18:04 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Received: from mail-pf0-f195.google.com (mail-pf0-f195.google.com [209.85.192.195]) by lists.alpinelinux.org (Postfix) with ESMTP id 8A2265C4349 for ; Fri, 21 Oct 2016 10:02:25 +0000 (GMT) Received: by mail-pf0-f195.google.com with SMTP id r16so8225637pfg.3 for ; Fri, 21 Oct 2016 03:02:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:cc:from:openpgp:message-id:date:user-agent :mime-version:in-reply-to; bh=BFcSdLqa6+E0bs+Xk9XhARI+Yoh3j/Si1SWZx4jQ6ZY=; b=OVLe202HEfsAl3q4HPR5jMobIELJHh9ry1MwMJ+Z8I3GbyQ8otgp39LeA+9T2sph8E mWKzqKajYlEChMQ8rjFFIi96Bahf0b0d4cHITeWrioRTC09C7ZwnImyUaBiYMrd6GsIY FTLZvMIDROMRVPpWibiuoUcp/XgCmX1wQA9v3ORzCUX8WH/PT0BwAc7xotCe0mDueVRw DOjP2u0yakWcCcp3v9i/rzjXE/pKlEnLw9+o2O7TjS1bcqKHxssvUKbrhDSPsCIoybeB yCHKEjk/dB+egjIcsOgk35ghSawhf4OA2jNeZ3lMSmmZhN5awe4b2aC3+jtqTj4vJoyM M+Sg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:openpgp:message-id :date:user-agent:mime-version:in-reply-to; bh=BFcSdLqa6+E0bs+Xk9XhARI+Yoh3j/Si1SWZx4jQ6ZY=; b=TrtHFfQnjsNnh273P2jVoAoEAlAbkXTK8mQjqYc+VvAgsjSPxu/0nR8WFOcJqq/Vbk 13SQFomoMTyXku+qasmNLMCuiNcP6Hr+A/ZRjoJe7k04zPqGmKCEKydn9ksBARCc75EY S3zMsalH5ur57iP5+uytP75AtlEBW9HgVxwxd627SRb678uLUmG8ElmkdHBMarMemQnV tChjKCVb6bCUXOSR1UjurIg9foar1OodQ7MwmCuQxVN4kBGswRbirfknzlj1ZSLWd4xT lB4QT1Z7rSKj87vYRA13fVMcUlauZOOjkt/MY28bXLW722TJred2RABOGVoCqlrlRAEi AzQA== X-Gm-Message-State: ABUngvdLPYbGzXQEBxGnq8f/MJW75aEtvA8ng8Ey3RO9Wa9DEtt9/tc8tNg1nikNMvwpJA== X-Received: by 10.98.155.152 with SMTP id e24mr34641pfk.99.1477044145064; Fri, 21 Oct 2016 03:02:25 -0700 (PDT) Received: from [192.168.1.2] (c-24-130-32-18.hsd1.ca.comcast.net. [24.130.32.18]) by smtp.googlemail.com with ESMTPSA id q7sm3733632pfq.80.2016.10.21.03.02.24 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 21 Oct 2016 03:02:24 -0700 (PDT) Subject: Re: [alpine-devel] CVE-2016-5195: Local privilege escalation exploit in Linux kernel To: 7heo <7heo@mail.com> References: <20161021103807.707115f3@ncopa-desktop.copa.dup.pw> <9k46rq.ofe6gu.1hge1d2-qmf@gmx.com> Cc: alpine-devel@lists.alpinelinux.org, ncopa@alpinelinux.org From: Kevin Gallagher Openpgp: id=22586762C39A5DFFF7D7FDC55F4F47885921D69C; url=https://cointel.pro/kevinmg.asc Message-ID: Date: Fri, 21 Oct 2016 03:02:23 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0 X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 In-Reply-To: <9k46rq.ofe6gu.1hge1d2-qmf@gmx.com> Content-Type: multipart/mixed; boundary="------------8ED3DDF4C862307322D18778" This is a multi-part message in MIME format. --------------8ED3DDF4C862307322D18778 Content-Type: multipart/alternative; boundary="------------A567452AA6B84E99A2A5EAFA" --------------A567452AA6B84E99A2A5EAFA Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Same deal on non-Alpine grsec. Think it's cause of grsec /proc restrictions in general, but I don't know a ton about the memory subsystem. On 10/21/2016 03:00 AM, 7heo wrote: > Could it be that /proc/self/mem is also not writable in alpine? > > On Fri Oct 21 11:23:40 2016 GMT+0200, Kevin M. Gallagher wrote: >> I just tried to execute the proof-of-concept on Alpine, and it didn't work >> (the file is supposed to be overwritten). No grsec messages logged, but I >> figure maybe it's not effective under grsecurity for some reason. Still a >> good idea to patch anyway... >> >> On Fri, Oct 21, 2016 at 1:50 AM, Kevin M. Gallagher < >> kevingallagher@gmail.com> wrote: >> >>> Great to hear. Thanks a lot, Natanael! >>> >>> On Fri, Oct 21, 2016 at 1:38 AM, Natanael Copa >>> wrote: >>> >>>> On Thu, 20 Oct 2016 21:53:03 -0700 >>>> "Kevin M. Gallagher" wrote: >>>> >>>>> Details: >>>>> >>>>> http://dirtycow.ninja/ >>>>> https://lkml.org/lkml/2016/10/19/860 >>>>> >>>>> Proof of concept: >>>>> https://github.com/dirtycow/dirtycow.github.io/blob/master/dirtyc0w.c >>>>> >>>>> I'm using Alpine Linux for a time-urgent and security-critical project >>>>> happening this weekend, and would really like to see this fixed. >>>> However, >>>>> I'm not familiar with aports or the way you build kernels in Alpine. Is >>>>> anyone available to update the kernel in linux-grsec in the 3.4-stable >>>>> branch and/or backport the patch, sometime soon? >>>> Yes. Updated kernels will be available with an hour or two. At least >>>> for edge and v3.4. >>>> >>>> -nc >>>> >>> > > --------------A567452AA6B84E99A2A5EAFA Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 7bit

Same deal on non-Alpine grsec. Think it's cause of grsec /proc restrictions in general, but I don't know a ton about the memory subsystem.


On 10/21/2016 03:00 AM, 7heo wrote:
Could it be that /proc/self/mem is also not writable in alpine?

On Fri Oct 21 11:23:40 2016 GMT+0200, Kevin M. Gallagher wrote:
I just tried to execute the proof-of-concept on Alpine, and it didn't work
(the file is supposed to be overwritten). No grsec messages logged, but I
figure maybe it's not effective under grsecurity for some reason. Still a
good idea to patch anyway...

On Fri, Oct 21, 2016 at 1:50 AM, Kevin M. Gallagher <
kevingallagher@gmail.com> wrote:

Great to hear. Thanks a lot, Natanael!

On Fri, Oct 21, 2016 at 1:38 AM, Natanael Copa <ncopa@alpinelinux.org>
wrote:

On Thu, 20 Oct 2016 21:53:03 -0700
"Kevin M. Gallagher" <kevingallagher@gmail.com> wrote:

Details:

http://dirtycow.ninja/
https://lkml.org/lkml/2016/10/19/860

Proof of concept:
https://github.com/dirtycow/dirtycow.github.io/blob/master/dirtyc0w.c

I'm using Alpine Linux for a time-urgent and security-critical project
happening this weekend, and would really like to see this fixed.
However,
I'm not familiar with aports or the way you build kernels in Alpine. Is
anyone available to update the kernel in linux-grsec in the 3.4-stable
branch and/or backport the patch, sometime soon?
Yes. Updated kernels will be available with an hour or two. At least
for edge and v3.4.

-nc


>

--------------A567452AA6B84E99A2A5EAFA-- --------------8ED3DDF4C862307322D18778 Content-Type: image/png; name="dirtycow_grsec.png" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="dirtycow_grsec.png" iVBORw0KGgoAAAANSUhEUgAAAdAAAAEqCAMAAACSivFNAAAACXBIWXMAAAsTAAALEwEAmpwY AAAAB3RJTUUH4AoVCSg7FGByLwAAAutQTFRFACs2ASw3Aiw3Ai04Ay44BC45BS86BjA6BzA7 BzE7CDI8CTI9CjM9CzQ+DDQ+DDU/DTZADjZADzdBEDhBEThCETlDEjpDEztEFDtEFTxFFj1G Fz5HGD9HGT9IGkBJGkFJG0FKHEJKHUNLHkNMH0RMH0VNIEVNIUZOIkdPI0dPJEhQJElQJUlR JkpSJ0tSKEtTKUxTKU1UK05VLE9WLU9WLlBXLlFYL1FYMVNZMlNaMlRbM1VbNFVcNVZcNjw+ NlddN1heOFlfOVpfOlpgO1thPFxhPFxiPV1iPl5jP15kQF9kQGBlQWBlQmFmQ2JnRGJnRWNo RWRoRmRpR2VqSGZqSWZrSmdrSmhsS2htTGltTWpuTmpuT2tvT2xwUGxwUW1xUm5xU25yVG9z VHBzVXB0VnF0V3J1WHJ2WXN2WXR3WnV3W3V4XHZ5XXZ5XXd6Xnh6X3l7YHl8YXp8Ynt9Y3x+ ZX1/Zn6AZ3+AZ3+BaICCaYGCaoGDa4KDbIOEbIOFbYSFboWGb4WGcIaHcIeIcYeIcoiJc4mJ dImKdYqLdYuLdouMd4yMeI2NeY2Oeo6Oeo+Pe4+PfJCQfZGRfpKRf5KSf5OSgJOTgZSUgpWU g5WVg5aVhJeWhZiXh5mYiJqYiJqZiZuaipyai5ybjJ2bjZ6cjZ6djp+dj6CekKCekaGfkqKg k6OhlKShlaSilqWjl6ajl6akmKekmailmqimm6mmnKqnnauonqypn6ypoK2qoK6qoa6roq+s o7CspLCtpbGtpbKuprOvp7OvqLSwqbWwqrWxqrayq7eyrLezrbizrrm0r7m1r7q1sLu2sbu2 sry3s724tL24tL65tb+5tri4tr+6t8C7uMG7uMG8ucK8usO9u8O+vMS+vcW/vsbAv8fBwMfB wcjCwsnCwsnDw8rExMvExcvFxszFxs3Gx83HyM7Hyc/IytDIy9DJy9HKzNLKzdLLztPLz9TM 0NTN0NXN0dbO0tbO09fP////n/4oDgAAAAFiS0dE+DtjZ2YAABqASURBVHja7Z1pYFTV3caf yQREiAVRka1MwSVoZZFXLUF5oS4IBEoDxDbWyGYNSF8FRBapJSgt1khGCxggVmlkTQGBmja4 1Ij4AiEs4htFLMpmDITE7Ofr+2HuWWbOmZtkMndmhP/vC4dzzz3nzH1yl7nnmf8fIJrgv/+P jgFBEARBEARBEARBhMiMof7/9xaF1s+wMxjxVaiTKGEsP8jEmj2fnbnmmniW0sRHVj7E/uri e8N0YKM1+tFFvn9/nPPFuR19Qxf0qV14Jj/USXT3vJ0fZGKtFtRdcm+Qj6zRuzJ/xMaqG8Mp aORHt/rv9+1rSbcv+0/7kAX96wvYsCj0aWx0TNDgf8Maf/62PdqdXR5OQZ0ZPZXdWFD1TQrw yKc1n00BRCGBMcYYy0J8yTMAkD8V3qK0E2XZbtlmEHu5KjO74mUAw4u+P/k0ACAxPTHwqpmK 0rFqxYKz5Zk7cwG0W3qi+uAjaiG4oDnvec+ffU6ZmDIf8Sn4NPpv+rrmyBQAWHSm/AX/A8hr PIxZFz1rd9HzNTUPA+jLhsqJ7d8IYN1hnJwBAJh2VunQZvLiqDo3uibo3ozbxo3FKLZy5Cvs lxAFl8fzeZbH0xnJpe74ZV9//MpL8J7ZnfIHNl62GcQWLmlc8xjrjiF1m0bN+j4dAGawGeoA NzALWfVrtmR0YUUugK0X5jwwK08t2AjauOb6+yomy4nJ+YhPIabx0MsTh8+pHQ1Mavx98gdV qqCiJt7TRxzSvRm3jRsre960C8DiEy45sYtLcRWeq3FtXgsAWLFd6TH45MVRdXB0TdCZAIB3 PgLw/rtKgV8BXlmKuZ8PT6vMhbemC/DJCtlmELumF7vLVTMUhXtdwOLDqqBxLgBA2wEZpwfM +nLAADnmni3AdXW5wBA2DkC8UrATtLojkH1AveTy+YhPoUwDwPo3gX0bge71qqBKTbw4pDP9 L3rJ9V2B0kw5MTebN6Zx/GzWfm4x2qcn4OOFskObySsH06nRdUF7AgDKngewqFIp8P7feRhH JwLeXHgPA9iwRbYZxNp0Zn1RNqpt3dMA7mu8QvTbdUtlxeuDe2WkAvPykblOGdJVMx3Avlxg QZXLugbzgqRtp06d2voJehBAel2cIiifD/8UchrtFpRcqK4vgKt2OoBiRVC1Rh7Snv6HtM2Z J3EXu1lOzM3m/fz8iDms/bC6K0ew0W2qH1BuIMEnrxxMp0bXBXUDABrmAJjJ4mWB9180BhX9 gem5voeQvG2y8SAW34kl4tzYa1ltdXV1DfuJvKyuSk7b3si+/CmwbS4KfqcMeTV7CMA/c4Gs 41aVKEimMGad6lzQDwCMY9cGPBTlbZOfQk7D++2k/okbCtFJjMVRa+QhdQc8lmR9guV71Ild XArguRpXQsOdS9//8wDWWfZoM3nlYDo1ui4omjhDC9JwdCTwvCKoPEMtQdvWzU1MTExMbCMf FACg+61u1Fu30ETDGbqQ/20v1P/Ir09KSuoGANhgCfopgKn1brOgvhNDTOPcHADbC+GqmQZg r3qGKjXykAY+Zw5kt56aoU6MP5agJGPPkH2TjykztZm8foaGffRggpruoXuWAcCKpZj/wXX9 TiuCynuoJSje/avo8ZYpt6gD9P9V1e2Pnh84QF6N8fFG4JraXOBufve52+4euvI966GoJ7Cu WE5MF1RMw1X1KJBQXgjsfRXocFG9hyo1+iG1egaK/117LZSJ+b44ZAOr1x/Dobw3lE96d0vu oeEbvQlBR7GVD/Kn3AetB7O1x4cmdsHYL9xts88cyF0tDyBvIwW9p3Z1cvKivxuecjF7J+b7 f5N8uPHZe3eV5wJ4+8Ls+59YrxYMpNVPussD5FR9OGZ+w1Q5MYOgYhpbP+zabUNFIfDIhZ93 /kujKqio6eLpwx73ePwOqdUzMIttBZSJ9a7MH72p6kZgWt0qZNc9oX7S4JNXDmbYR29CUKQf qy2d6leAp+ACy4L78CL11V/eNtlGCoph71aVv2f62oJdT2F3hv+gz54r/0NBFoAr//RV9aF0 tWDAvbyMeYGcwsXl5zJdcmIGQcU0um+tOJW5qhDAs2crVhf4fQ/lNdvE1yl5SK2egZvZRECd 2PAD1QfvBdCfTUAyu1P9pDaTlwcz7KOHTr9zf7nJddXV4X1P7Do+o4V75BRG8j32zPNXRvEt usOj937r+wY2L3z9/WTRPYOyyjvHsKC9R57Kjp6cERi9ba/rwthbj399d2H37YhhQfPqdnSM nqDRHZ0gCIIIB5FzLNj27GE3+M1Haawv+jdnU9OftIVtxCYxVTsyT7Oi6AgaOcdC8wTV17X1 Rf/mbAr+SUNsIzY1R9A72G8HJUZV0Ag4FkIVNNx/upEQNK3WUdGi4lgQjfmKvNazLqjBqCAX /ScUV53a3Mlvn6CbvEVPnvQbS/YskIYHC6WNmLzVs7p7gKDjVvXT/nQZY4wVQT/gYRM08o4F 2ZivyGs9q3RITQBMRgWx6N+3/sWhE9b1UO+gwTd5K1f3HF0/3vBJJcLwIF5siTZi8rxndXff VAUD97Pd4/3f2nf2zK7xeLpBP+BhEzTyjgXRWKz1az3bXdmkUYE/+aTVxwV7KNI3eS92AN5d YfikAax/0zS6mLzSc/Cr8Z1rKk/O7+JXlV4d9ICHR9CIOxZkY7HWr/VsK6gwKnDVBrK1wzqY BdU3eYsBrN9i+KQSbnjQR5eTV3q2uwV3nF5cM8ogqOmAh0fQiDsWZGOxIq/1bCsob6wsKX5U X7OmjfFri7bJNFagItzwoI+ufFLZs52g3eYdL7/XIKjpgIdHUDRxhobdsSAbixV5recWCgr8 aGbDpCDfQwM2mcYKVIQbHkxnqPJJec9BBY0bsaXu0OMdENEzFEEv6U45FkRjsSKv9WxEMyr4 vT04viDoiwW/TaaxhFXAegQShgd9dOWTip4Ddhfc9WX95uGBlY7fQ33/RtKxIBvzFXmtZyOB RgWx6P/Y6vFD/9g4WGlqs8k0lrAKWAjDgz66mLzSc+DunJHP/1ivtAQ1HfBwChpRx4JozFfk tZ7NbxgCjApi0f9nO89UHXhIbWqzyTSWsApYSMODNrqYvNJz4O62WIKaDniEcMSxQESRcDsW iKgTXscCQRAEQVzqOO5YaKpD/x/qKnEG+taVmmsUomcMiFkcdyy0SFA1zsDbZaXGGoUoGgNi XVDnHAstElSJM3D/kbWlxhoFh40BMUtUHAuBRgWlHzENLTaC+Ekd3CW/yCk11sg/FaeNATEs aOQdC5pRQfYjpqHHRuBxBoCMIuSUGmsEjhsDYljQyDsWNKOC7EeMrsVGEHEG0PHsPcgpNdWo OLyoEcOCRtyxoBsVRD+iZz02gogzgBffBhc0oMYgqFPLjjEsaMQdC7pRQa7a8J712AgizkCv 6sEJCbmfJ7gNNbqgThkDYlhQNHGGht2xoBsVpKDiDNViI4hHoKFWh2MNNXSGRsWxoBkVZD9i dD02Ao8z0DEpKSlp68mkzoYauodGxbGgGRVkP2J0PTaCiDMAWHdMvUYX1CljQMwLGlHHQqBR QelHjK7HRuBxBqR8eo0maBSNATELORYuNcixcMlBjgWCIAiCaAlOORZMiR4C0dsYRydbQktw yrFgSvQQiN7GNDrZEkIR1AHHwsZmZP3Y2AxBL1dbgg1RcSwIsbQACHobEe5Aji4kvmxtCbaC RsGxwMXSAyDobUS4A5kDgnP52hJsBY28Y0GIZYqNYLzkrn/TL7SC4HJdUrEVNPKOBSGWITaC lgxChDtQQisECnrZLXraChp5x4I8+/TYCFoyCBHuQPnhdqCgl50twVZQNHGGht+xIBI9QI+N oCWDEOEObASlM1QXNJKOBZHoAYAWGyGgjQx3YCMo3UN1QSPqWOCJHvQACHobEe7ARtDLzpbQ DEEj6ljgiR70AAh6GxHuwEZQsiW0CHIsXGqQY+GSgxwLBEEQBBF5umTvb2hBUqTmJGgI2liM 5Zr/n+pPhvttG3uo+sgE+92Td5z+ruC/zHPm8RxEG8Hkf393fvcQX/lyCPUw6Ju3SlsgaHPi +QdtLMaa1vDcyHz+KwkAwB31b459vSHJdvc92x+f8r8XbzTNWcRzEG0EL3sfe/Sf1bcBuDxC PcQBOyMlqBjr8Abgim9eUjat/ywOcUfybXfvBeC66hdMcxbxHEQbP9qVLQFiK9SDsC44sFeg oE3bJEJtbI0VVzsLwOZ9Sv25VwFkVUBEeDDvDpT+zTRnGc9BtlG9GSe8iLFQD9y64MReuqBN 2SRCbWyN1abhCQB/K5fVndjTAP6HXS8iPJh3R+eauaY5y3gOsg1/yelK6LG4LgkxFuqBWxec 2EsXtCmbRKiN+VhfvQrgaINyNWUZACazm2SEB/PlPfvbzoY5y3gOShsuaA/GKkcBsRHqQTgE uHVB1jSnYLOXraBN2SRCbczHyrxw3zXPXqyX1R6WAWAKu0lGeDDuntwwBmZBrXgOaht+DJOS N303ELER6kE4BLh1QdY0p2Czl62gTdkkQm3Mx7pqB2MHXzojq68Wl1wR4cG0+4CKBeY583gO fm0krr3bERuhHoRDQKyjiZrmFGz2shUULTlD0fIzFOjRN27tP5X6Mv5QtNDmDO1+8vUgc5YP RUobhdeOx1qoh1Tm3F7BBA1ukwi1sTpWt0r1SrHpszjEHfm7EuFB3/2q/QVtgsyZx3NQ21je jCsAxJcUxVqoB8cEdaWk7DuUkuIy7BXcJhFiYzHWHS89+tQXh9spmwY3/O2XbzTcDRnhQd89 v3JySkrKPaY5i3gOoo14KDq7fNr099mvfe1iJ9SDY4LG+y5E8aa9gtokQmwsxrp5T1XZG139 5pFypOboREBGeNB3P8kYY6zQOGcez0G0EYJmHawo/5A/JlGoB4IgCIIgCIKIKI5nhQAAbN/M v8rn+r55pDQxDaVjmRVCp1VWAb1n27F+IDieFQIAEhuH+AnqLrk3yDQ01KwQGq2yCug92471 AxPUuawQALBiL/wEDf53paFkhdBplVVA79l2rFgiOjEWJNdU/QqQOSA8jPHc2b6JiWlcU/Mw gL5sqEwqwV+Yn/S9s512Vrk7NG0VMKWi4AX5Kj54TcwKGo0YC5J5J+Oh5ICI9/QRgu7NuG3c WOkr2LQLwOITLplUgrsINq/1nevbZbfNsAoYUlGIgvAn2NTErKDRiLEgaPv104BfDgiR3V54 IaxLbnJ9V6A0UyaVEC6CucVon56AjxeqPTe5zGFIRcEL0p8QvCZ2BY1GjAXBby5eDfjlgJCC 9vQXtM2ZJ3EXu1kmlRAugmF1V45go9tUP2AQNPhCpJ6KQhSkPyF4TewKGo0YC4J9XgBQc0BI Qd0BD0VZn2D5HihJJbiLIKHhzqXv/3kAMy1EBrcK6KkoZEH4E2xqYlZQNHGGOhFjQXy5a7gB gF8OCClo4FPuQHbrqRlQLAfiQaUkY8+QfZOPoYVnaGAqClkQPdvUxLigkY2xwNtstb6eKjkg dEGFr6D437XXQrEcCBfB6vXHcCjvDbTwHqqlohAF0bNNTYwLGtkYC1abGxvv8f1f5IDo4unD Hvd4/AQVvoJZbCsAaTkQLoJpdauQXfeESdDgVgFDKgpRED3b1MS4oJGNsWC1efUTXsFzQGwT X3GkoMJXcDObCECxHHAXQX82AcnsTpOgwa0CplQUoiDyTdjU/GBxLMZC58q0FrWfef5KesEe DmIjxkLvkaeySYswEQsxFvLqdnQkJQiCIIgfJjKYgL58P/1o1bEn/TbZFIjYQAQT0JfvH2ZL hv+ePaZssikQMUS7siWm5fv8vQDe/4eyyaZAOIZYtZfL9yILQ8573vNnn9N2OeFVl++5eWD7 vwDs+IeyyaZAOCiotWovl+9FFoacxjXX31cxWW3OgwnIgAPcPDCu9hdXj/p+rLLJpkA4KKi1 ai+X7wH4sjDkVHcEsg+oza1gAnL5XsYrmFTL6qcqm2wKdNidFNRatZfL9yILQ85BAOl1aiIO K5iAXL4X8Qrur1g4fH71eLnJpkCH3UlBrRUHufQgsjDkfABgHLvWfw/X3u1KwAFhHjjyJoC1 J5RNNgUikoKKLAw5nwKYWu8O2OW148rjDTcPuBvnA5jD2tNDUawJKrMw5DT2BNYVK615MAG5 fC/MA6fzALxepmyyKRCRPENFFoacqg/HzG9Ql3JFMAGxfC/MA0saljz4+/rnlU02BSKSgoos DDmFi8vPZap3PBlMQCzfc/NAm3nHqj6b10bdZFMgokFOIR0DEpQgQQmCIAiCIAiCIAiCIAiC IAiCIAiCIAiCIAiCIAiCaA0B4d/1TA0aFD/hhySonqkhEIqf8IMStGkofkJsYAitwBM09Gh8 AMAw1lvJ1DChuOrU5k5Qc0BY0E8FY0VQLbSCSNBQtBLA8n1Kpoa+9S8OnbCuB9QcEBYUPyFW BNVCK4gEDU+figO+mq88FKXVW7/PV3JAWDdZip8QK4IGhlaQCRr6sMEYxG5RBB3I1g7rAEDP AUHxE2JG0MDQCkqChv3LkHnE72tL6kf1NWvaQM8BQfETYk5QHlpBSdCw8HMcXhzwPfRHMxsm Qc8BQQ9FsSaoDK0gEzTcysaz27UXC8cXQM0B4fe1heInxM4ZKkIriAQNwNFvjgNKpobHVo8f +sfGwVBzQMgXCxQ/IaYEFaEVRIIGIJO9CCiZGn6280zVgYcANQcEh+InEARBEARBEARBEARB EARBEARBEARBEARBEARBEARBEARxeVPCWD4vZ55mRS3cvUv2/gZf2iYRmaGVBaJ1dPe8zQW9 g/12UGILdx/0zVulhYASmaGVBaLVbOSCptW2fOc4YGchoERmaGWBEOS85z1/9jkASGU3FlR9 kwI88mnNZ1MAoN3SE9UHH4ExtIIlqJcxxliREquBt1FqTPgEbU5+Z8oB3TJBG9dcf1/FZACp bG/GbePGYhRbOfIV9ksAWy/MeWBWnjm0giVoZ8/sGo+nmxKrgbeRNTaCisgMrSwQUtDqjkD2 AQCpbCYA4J2PALz/LjCE59c2hVYQl9z0akCN1cDbBERvMAoqIjO0skAyKoIeBJBeFweksp4A gLLnASyqBBZUWX/6ptAKmqBWrAbRRkZvkLTt1KlTW39BfZEZWlkgGRVBPwAwjl0LpDI3AKBh DoCZLB5Zx3kjQ2gFTVDrd6aijfzlqWQKY2xGwCUX/OLZmgIhBf0UwNR6N5DK4H+GLqySR0oL rbAhiKCijUnQ65OSkrrRQ5HDD0U9gXXFkIKKe+jd/B4KQAutsPI9s6CijUlQ7aFIRGZoZYGQ glZ9OGZ+w1RF0FFs5YO+p9y3L8y+/4n15tAKafWT7vKYBOVt7AR1paTsO5SS4pKRGVpZIKSg hYvLz2W6FEGRfqy2dCoAXPmnr6oPpZtDK7iXlzGvSVDexk7QeF/QhnglMkMrC4QUlI4BCUqQ oARBEARBEARBEARBEARBEARBEARBEARBEARBEARBOMqMgN8CeotC62fYGYz4qoVjIaToDYQt Rxf5/v1xzhfndvQNXdCnduGZ/GaOJQklegPRnIPc79vXkm5f9p/2IQv61xewYVGLBQ0legNh CK1gFRJ8P0DJQnzJMwCQPxXeorQTZdlu2UYPrQAgMT3wvCpJRanfb1x49Ib+m76uOaKOpVze regN+sSIJgQNCK3ACy6P5/Msj6czkkvd8cu+/viVl+A9szvlD2y8bKOHVgAwg/+o18cNjPGE sgIeveGhlycOn1M7Wo4l4dEb9IkRTQgaEFpBFPhl8JWlmPv58LTKXHhrugCfrJBt9NAKiqBx vt8Ltx2QcXrArC8HDJBjDvH75en6N82XXN/v2owTI+wEDQitIAr8IL/zMI5OBLy58B4GsGGL bKOHVhD9dt1SWfH64F4ZqcC8fGSuU8cU0RvaLSi5UF1fYCuoaWKEnaABoRVEgR/kojGo6A9M z/U9FOVtk4310Aqi31+vSk7b3si+/CmwbS4KfqeOKaI3eL+d1D9xQ6GtoKaJEXaCookztCAN R0cCzyuCyjM0MLSCfO4BgO63ulFv3UKVJyURveHcHADbC+kMdUBQ061qzzIAWLEU8z+4rt9p RVB5Dw0MrQDglim3qAP0/1XV7Y+eHzhAXo1F9AZX1aNAQnmhHIvuoWETVIRWkDEWsPb40MQu GPuFu232mQO5q6WgvI0eWkF/ysXsnZgf8FqBR2/Y+mHXbhsqCuVYBkFNEyOaFlSGVhAFeAou sCy4Dy9SX/3lbZNt9NAKBkF3PYXdGf6D8ugN3bdWnMpcVSjHMghqmhjRKvqd+8tNrquupgNx ydD7re8b2Dw6DpcQbXtdRweBIAiCIPyxrALKWmc8SwnW2GZT0J5DbdOc3Qkd652bIqi7JGj8 PJtNQXsOtU1zdieaI2iYeyZBI4i0Cgg3gocx67oqkkFwbDZ5i5486WdmMJgQuD/BMLo0PFg9 G3YnmoG0Cgg3Qrynj081kQxC3kGDb/JWru45un68wfAg4f4Ew+jC8MB7NuxOtOySy90I4slH JIPQH4r0Td6LHYB3VxgMDwH4/AmBowvDg9IzXXJbJyh3IwjVeDIIg6D6Jm8xgPVbDMupEsWf EDC6NDwoPZOgrX8oytumfjexkkGYvrZomzQzg0ERxZ8QMLpieJA9k6DhFtRKBmH+HhqwSTMz GBRR/AnaGaoYHnjPJGhoWFYBo6C+ZBBBXiz4bdLMDNBMCKo/IXB0xfAgetY9DERzsKwCQpEu nj7scY9HSQYhsNmkmRmgmxAUf0Lg6MLwoPSsexiI5mBZBYQi27gtWiaD4Nhs0swM0E0Iij8h cHRheFB61j0MBEEQBHF5wyR0MC4JQQ0lggQlWo4zMRZI0KjhTIwFEjTagoY5xgIJ6iiRj7FA gjosaKRjLJCgDgsa6RgLJKjDgkY6xgIJ6rCgkY6xQII6LCiaOEPDHWOBBI2IoJGLsUCCRkTQ yMVYIEEjImjkYiyQoNEmzDEWSNCoE94YCyRoDBDOGAsk6CUGCXqpCUoWFIIgCIIgCIIgCIIg CIIgCIIgCIIgCIIgCIIgiAjw/69L4p1skMRHAAAAAElFTkSuQmCC --------------8ED3DDF4C862307322D18778-- --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Fri Mar 29 02:18:04 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Received: from mail-vk0-f66.google.com (mail-vk0-f66.google.com [209.85.213.66]) by lists.alpinelinux.org (Postfix) with ESMTP id 4EAD35C4354 for ; Fri, 21 Oct 2016 16:19:46 +0000 (GMT) Received: by mail-vk0-f66.google.com with SMTP id 2so5033626vkb.1 for ; Fri, 21 Oct 2016 09:19:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=8yQ+WSCmVStuV57VrmOO0IlcWLZKTqn32R1qyLWaKTw=; b=SPvXl/3xCfj5XRJi6u0mWVXeSgANyASzEwA1txwN6nRlBFKDQuQOUL+h9w9GNbmD5u TeDIe4RNE8sD07eghE8FvFy7m/ERKfL1/xiXtSQ/ikRdHQAV9GZAtq6MGrDYefCPl1oH +09LUSZEv1GP8fov+l+izIQW7FFtjgqOF9cE+Lmd9st0kzphOvHeHmj6lS8vBdLN+hBc JhTQ0gyls8BGasdeObzSY6erQjIVDBVz8lxdtnYomQ/zwQMCEgTTgR5K+DI/GAvIf214 /eSly4kBfn8wQ9eWln7Y/TXjGhxQhVZXw45j2YA2WhUl9RT1+xtuoEUkygdffD4UeyuE UZnw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=8yQ+WSCmVStuV57VrmOO0IlcWLZKTqn32R1qyLWaKTw=; b=KSvDLflQUJkBOcDF6uf5Gi5DBwU/6dSJ+DaLvh3X8NNjziqTA0E1JJatFfFvzVSdKT QmPlGwr4t6awu4jsy1DC7qLWwEav7B1hhVFq6p2T/jzZ4TKc49ajlPCwxlrrSwGtipC7 3yxaD4n1cm9/GA6WJ7laGCkn2V3OJBI94eMSBljdvg2lEf9toqny7YALkfR5M932AUiP XJQnyo7tKjB8hop/XvKZQqNxXVTF8dxYXaWwXReCmdVzdnsAHg8hoHPjQ3uWOIXKrdgz yJzg9b5Jc5nz9HD0fxd0S1dUW9VSCl8XU7lThbqoAWb7kP8xJwdKcjRzUaF+n5usvJVE m5Lw== X-Gm-Message-State: ABUngvdmZy/XMW2unO7p3EeL1m7pZGkQI7tO5/Iw+hMbZfVMumv0XneJb/G1rWWEBCp10efRXdz9M1Nnlm9yAA== X-Received: by 10.31.9.74 with SMTP id 71mr1249683vkj.75.1477066785827; Fri, 21 Oct 2016 09:19:45 -0700 (PDT) X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 Received: by 10.31.125.12 with HTTP; Fri, 21 Oct 2016 09:19:44 -0700 (PDT) Received: by 10.31.125.12 with HTTP; Fri, 21 Oct 2016 09:19:44 -0700 (PDT) In-Reply-To: References: <20161021103807.707115f3@ncopa-desktop.copa.dup.pw> <9k46rq.ofe6gu.1hge1d2-qmf@gmx.com> From: "Kevin M. Gallagher" Date: Fri, 21 Oct 2016 09:19:44 -0700 Message-ID: Subject: Re: [alpine-devel] CVE-2016-5195: Local privilege escalation exploit in Linux kernel To: 7heo <7heo@mail.com> Cc: alpine-devel@lists.alpinelinux.org, Natanael Copa Content-Type: multipart/alternative; boundary=001a1144141e14326a053f6269ff --001a1144141e14326a053f6269ff Content-Type: text/plain; charset=UTF-8 Okay, an update. It turns out grsecurity is definitely vulnerable to the flaw, it's just a poor proof-of-concept that would work w/ modifications in order to hit that race more reliably. Glad you guys patched. Thanks for expediting. On Oct 21, 2016 3:02 AM, "Kevin Gallagher" wrote: > Same deal on non-Alpine grsec. Think it's cause of grsec /proc > restrictions in general, but I don't know a ton about the memory subsystem. > > On 10/21/2016 03:00 AM, 7heo wrote: > > Could it be that /proc/self/mem is also not writable in alpine? > > On Fri Oct 21 11:23:40 2016 GMT+0200, Kevin M. Gallagher wrote: > > I just tried to execute the proof-of-concept on Alpine, and it didn't work > (the file is supposed to be overwritten). No grsec messages logged, but I > figure maybe it's not effective under grsecurity for some reason. Still a > good idea to patch anyway... > > On Fri, Oct 21, 2016 at 1:50 AM, Kevin M. Gallagher wrote: > > > Great to hear. Thanks a lot, Natanael! > > On Fri, Oct 21, 2016 at 1:38 AM, Natanael Copa > wrote: > > > On Thu, 20 Oct 2016 21:53:03 -0700 > "Kevin M. Gallagher" wrote: > > > Details: > http://dirtycow.ninja/https://lkml.org/lkml/2016/10/19/860 > > Proof of concept:https://github.com/dirtycow/dirtycow.github.io/blob/master/dirtyc0w.c > > I'm using Alpine Linux for a time-urgent and security-critical project > happening this weekend, and would really like to see this fixed. > > However, > > I'm not familiar with aports or the way you build kernels in Alpine. Is > anyone available to update the kernel in linux-grsec in the 3.4-stable > branch and/or backport the patch, sometime soon? > > > Yes. Updated kernels will be available with an hour or two. At least > for edge and v3.4. > > -nc > > > > > > > > --001a1144141e14326a053f6269ff Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

Okay, an update. It turns out grsecurity is definitely vulne= rable to the flaw, it's just a poor proof-of-concept that would work w/= modifications in order to hit that race more reliably. Glad you guys patch= ed.

Thanks for expediting.


On Oct 21, 2016 3= :02 AM, "Kevin Gallagher" <kevingallagher@gmail.com> wrote:
=20 =20 =20

Same deal on non-Alpine grsec. Think it's cause of grsec /proc restrictions in general, but I don't know = a ton about the memory subsystem.


On 10/21/2016 03:00= AM, 7heo wrote:
Could it be that /proc/self/mem is also not writable in alpine?

On Fri Oct 21 11:23:40 2016 GMT+0200, Kevin M. Gallagher wrote:
I just tried to execute the proof-of-concept on Alpine, and it=
 didn't work
(the file is supposed to be overwritten). No grsec messages logged, but I
figure maybe it's not effective under grsecurity for some reason. Still=
 a
good idea to patch anyway...

On Fri, Oct 21, 2016 at 1:50 AM, Kevin M. Gallagher <
kevingallagher@gmail.com>=
 wrote:

Great to hear. Thanks a lot, Natanael!

On Fri, Oct 21, 2016 at 1:38 AM, Natanael Copa <ncopa@alpinelinux.org>
wrote:

On Thu, 20 Oct 2016 21:53:03 -0700
"Kevin M. Gallagher" <=
kevingallagher@gmail.com> wrote:

Details:

http://dirtycow.ninja/
https://lkml.org/lkml/2016/10/=
19/860

Proof of concept:
https://github.com/dirtycow/dirtycow.github.io/blob/master/dir=
tyc0w.c

I'm using Alpine Linux for a time-urgent and security-critical project
happening this weekend, and would really like to see this fixed.
However,
I'm not familiar with aports or the way you build ke=
rnels in Alpine. Is
anyone available to update the kernel in linux-grsec in the 3.4-stable
branch and/or backport the patch, sometime soon?
Yes. Updated kernels will be available with an hour or two. At least
for edge and v3.4.

-nc


>

--001a1144141e14326a053f6269ff-- --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org ---