Downloads - Pro 2.1 MIPS
do_brk Security Fix (MVL-2.1 1-2UZ30)
Description
Date: 2004-01-20
Severity: Critical

All versions of the Linux kernel, prior to MontaVista Linux Professional Edition 3.1, contain an integer overflow vulnerability in the brk system (do_brk() function). 

A local user on the system can exploit this vulnerability to gain access to the kernel address space and gain elevated privileges. An exploit for this vulnerability exists, and has been used to compromise systems.

The CAN-2003-961/ VU #301156 patch fixes this vulnerability. 
Packages Affected
This problem is known to exist in the following packages:


Linux kernel: All versions of the kernel prior to MontaVista Linux 3.1. 

Download 
The patch required for this update can be found on the FTP site: 


do_brk fix

Patch Required
From the FTP site links to above, you need to download the following file:

CAN-2003-961.patch 
Installation Instructions 

To apply this patch, complete the following steps:

cd into the root of the kernel source directory.


Change to the /mm directory. Enter the following command:

cd mm


Test apply the patch you downloaded. Use the command:

patch -p0 --dry-run < CAN-2003-961.patch


Apply the patch you downloaded.

patch -p0 < CAN-2003-961.patch


Rebuild and reinstall the kernel. For more information on how to rebuild and reinstall the kernel, see the section entitled "Building and Configuring the Kernel" in the "Linux Kernel Development" chapter of the MontaVista Linux User's Guide. 
 
