http://disqus.com/by/Spender2001/enFri, 14 Aug 2009 12:27:57 -0000http://threatpost.com/blogs/another-linux-kernel-flaw-emerges-114#comment-14838748<p>My exploit still defeats SELinux on the latest updated kernels:<br>It works on all 2.4/2.6, x86, x64, 4k stacks, 8k stacks, creds support or not, bypasses mmap_min_addr if they're still unpatched to that, disables SELinux, AppArmor, LSM, auditing, etc.</p><p><a href="http://grsecurity.net/~spender/wunderbar_emporium.tgz" rel="nofollow noopener" target="_blank" title="http://grsecurity.net/~spender/wunderbar_emporium.tgz">http://grsecurity.net/~spen...</a></p><p>-Brad</p>Spender2001Fri, 14 Aug 2009 12:27:57 -0000http://threatpost.com/blogs/researcher-uses-new-linux-kernel-flaw-bypass-selinux-other-protections#comment-12879498<p>francky: It does use that (as they're credited in the exploit for it) but also a high severity vulnerability in SELinux that I discovered. That SELinux vulnerability likely exists on all systems using SELinux right now and is more relevant I think to users right now than this actual particular exploit.</p><p>-Brad</p>Spender2001Sat, 18 Jul 2009 11:10:11 -0000http://threatpost.com/blogs/researcher-uses-new-linux-kernel-flaw-bypass-selinux-other-protections#comment-12831610<p>Actually, I posted the first null ptr dereference exploit for Linux in 2007, similarly disabling SELinux and LSM, as noted in the exploit.</p>Spender2001Fri, 17 Jul 2009 16:15:32 -0000