Sun, 10 Feb 2008
workaround for CVE-2008-0010
I wrote a quick and dirty workaround for the recent CVE-2008-0009 and CVE-2008-0010 local privilege escalation kernel vulnerabilities.
Loading this kernel module will disable the vmsplice(2) and vm86old(2) system calls, which are used by the published exploits but by very few regular programs.
The code is ugly and does not support amd64 bit systems, any help is welcome.