X-Original-To: alpine-devel@lists.alpinelinux.org Received: from mail-vk0-f65.google.com (mail-vk0-f65.google.com [209.85.213.65]) by lists.alpinelinux.org (Postfix) with ESMTP id 388FC5C434F for ; Fri, 21 Oct 2016 04:53:24 +0000 (GMT) Received: by mail-vk0-f65.google.com with SMTP id 2so4234567vkb.1 for ; Thu, 20 Oct 2016 21:53:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:from:date:message-id:subject:to; bh=DwjErY1A3Wq1FD9JTReUbE3SUeFpy/eyQwpEu8LC3Jw=; b=FKdSRW+EhBi/MSOfUAh5fEeFBofox7p0dkJ6azZwe+K3anx6/S8f7fbUYzg0uginN+ rd3a1f+AzcWxRK+mHsCypBftixLqGgsMK+4vDcYf4z68wD03tx91jn1sdOOxC4D9A4CJ mTUCoi6McuxDPE7S5NRC20bGSpr/pv/O5ZVOhDpAjVC8pbTyCfxckmK/m8u5x1+WX+5Z og1QebufvRMPz1KOlilWrkFy05LRnXRqDJqJG/SXDBXhL+SAnvz2hPCBvI421eoXZ/53 hCgFvNgtFzC8jjKNoVtZyT6BcU5CawoXb5usohfDD9axPHAGLI2Dr/abVuYtrioa3+uw +Y3Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=DwjErY1A3Wq1FD9JTReUbE3SUeFpy/eyQwpEu8LC3Jw=; b=AeRAtO1+dsEInVf4Hu/4j3cJZW7q+Ond4rjCX0uD3vDdTXAGk4PS5P8lxIA2CTNys8 /x4eV4MhaCgUoZ9sVR8zqRUPAMvO/aG8sbEDmlZdoUagAuLQMXy8FB7UpsfZcejsnLVw 8nZATZwP+9jr3tvOGldQxtOoO1EPSpFUDqL5jTcSZZig/DfcDHdefx7qt/lKZSHfntVv KUneoSpTz9hgATlyTdUBn/Y3lPdPW10sm8+VJoJNnnEJjJM03z1aVb3CTSVmwl1oVifZ aYiPqARVee1mQReX7SiFBrrcqoi19Q83GSC3qZ8CxdCZ5z/gai5zgT+Zu3sb771ZMrBu dIlQ== X-Gm-Message-State: AA6/9RmihMHP7rOyPWEP2ivIHVkSlwIJ06sxhRBvotpP77xeac4jZiSWWfOVpJZJlAwsd4cNiVpGUxwZ0rkjdQ== X-Received: by 10.31.87.133 with SMTP id l127mr5431754vkb.152.1477025603513; Thu, 20 Oct 2016 21:53:23 -0700 (PDT) X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 Received: by 10.31.125.12 with HTTP; Thu, 20 Oct 2016 21:53:03 -0700 (PDT) From: "Kevin M. Gallagher" Date: Thu, 20 Oct 2016 21:53:03 -0700 Message-ID: Subject: [alpine-devel] CVE-2016-5195: Local privilege escalation exploit in Linux kernel To: alpine-devel@lists.alpinelinux.org Content-Type: multipart/alternative; boundary=001a114fa81c6bf313053f58d2ac --001a114fa81c6bf313053f58d2ac Content-Type: text/plain; charset=UTF-8 Details: http://dirtycow.ninja/ https://lkml.org/lkml/2016/10/19/860 Proof of concept: https://github.com/dirtycow/dirtycow.github.io/blob/master/dirtyc0w.c I'm using Alpine Linux for a time-urgent and security-critical project happening this weekend, and would really like to see this fixed. However, I'm not familiar with aports or the way you build kernels in Alpine. Is anyone available to update the kernel in linux-grsec in the 3.4-stable branch and/or backport the patch, sometime soon? best, Kevin --001a114fa81c6bf313053f58d2ac Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

Details:

Proof of concept:
https://github.com/dirtycow/dirt= ycow.github.io/blob/master/dirtyc0w.c

I= 9;m using Alpine Linux for a time-urgent and security-critical project happ= ening this weekend, and would really like to see this fixed. However, I'= ;m not familiar with aports or the way you build kernels in Alpine. Is anyo= ne available to update the kernel in linux-grsec in the 3.4-stable branch a= nd/or backport the patch, sometime soon?

best,

Kevin

--001a114fa81c6bf313053f58d2ac-- --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org ---