While this bug has not been fixed in the kernel yet, almost all distros have "worked around" it by adjusting the mmap_min_addr value. Karmic has fixed this issue by default already. The only major distro to not fix it is Fedora.
Here's how you can check if you are vulnerable:
Code:
cat /proc/sys/vm/mmap_min_addr
If that command returns a value other than 0, you are safe. (My Karmic install returns 65536). If you do see 0, then you can fix it by typing:
Code:
sysctl -w vm.mmap_min_addr="65536"
This exploit is actually over a month old and it fails me why this is even news at all. This article goes into more detail. And this article provides the fix I just posted.
Again, no Ubuntu users have anything to worry about here.
Bookmarks