From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <glebfm@altlinux.org>
Date: Wed, 15 May 2013 16:01:54 +0400
From: Gleb Fotengauer-Malinovskiy <glebfm@altlinux.org>
To: sysadmins@lists.altlinux.org, sisyphus@lists.altlinux.org,
	community@lists.altlinux.org
Message-ID: <20130515120154.GG13923@glebfm.office.altlinux.ru>
Mail-Followup-To: sysadmins@lists.altlinux.org, sisyphus@lists.altlinux.org,
	community@lists.altlinux.org
References: <20130514233518.GU4388@osdn.org.ua>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
In-Reply-To: <20130514233518.GU4388@osdn.org.ua>
Subject: Re: [Comm] [sisyphus] I: kernel local root vulnerability
	(CVE-2013-2094)
X-BeenThere: community@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Community general discussions
	<community@lists.altlinux.org>
List-Id: ALT Linux Community general discussions <community.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/community>,
	<mailto:community-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/community>
List-Post: <mailto:community@lists.altlinux.org>
List-Help: <mailto:community-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/community>,
	<mailto:community-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Wed, 15 May 2013 12:01:56 -0000
Archived-At: <http://lore.altlinux.org/community/20130515120154.GG13923@glebfm.office.altlinux.ru/>
List-Archive: <http://lore.altlinux.org/community/>
List-Post: <mailto:mandrake-russian@linuxteam.iplabs.ru>

On Wed, May 15, 2013 at 02:35:18AM +0300, Michael Shigorin wrote:
> 	=FA=C4=D2=C1=D7=D3=D4=D7=D5=CA=D4=C5.
> =F7 =D1=C4=D2=C5 Linux =CF=D4 2.6.37 =C4=CF 3.8.8 (3.8.9?) =D7=CB=CC=C0=
=DE=C9=D4=C5=CC=D8=CE=CF =D0=D2=C9 =CE=C1=CC=C9=DE=C9=C9
> CONFIG_PERF_EVENTS=3Dy (=D5 =CE=C1=D3 =D7=CB=CC=C0=DE=C5=CE=CF =D7 std-de=
f, un-def, led-ws
> =C9=DA =D4=CF=C7=CF, =DE=D4=CF =D0=CF=C4 =D2=D5=CB=CF=CA) =D0=D2=C9=D3=D5=
=D4=D3=D4=D7=D5=C5=D4 =D5=D1=DA=D7=C9=CD=CF=D3=D4=D8, =C4=CC=D1 =CB=CF=D4=
=CF=D2=CF=CA
> =D4=C5=D0=C5=D2=D8 =C4=CF=D3=D4=D5=D0=C5=CE =D0=D5=C2=CC=C9=DE=CE=D9=CA =
=DC=CB=D3=D0=CC=CF=CA=D4 =D3 =D0=CF=CC=D5=DE=C5=CE=C9=C5=CD =CC=CF=CB=C1=CC=
=D8=CE=CF=C7=CF =D2=D5=D4=C1:
> https://news.ycombinator.com/item?id=3D5703758
> http://packetstormsecurity.com/files/121616/semtex.c
>=20
> =F7=D2=C5=CD=C5=CE=CE=D9=CA =CF=C2=DF=C5=DA=C4 =C4=CF =CF=C2=CE=CF=D7=CC=
=C5=CE=C9=D1 =D1=C4=D2=C1 =C4=CF =C9=D3=D0=D2=C1=D7=CC=C5=CE=CE=D9=C8 =D3=
=C2=CF=D2=CF=CB
> (=D3=CD. https://bugzilla.redhat.com/show_bug.cgi?id=3D962792#c7):
>=20
> sysctl kernel.perf_event_paranoid=3D2
> echo "kernel.perf_event_paranoid=3D2" >> /etc/sysctl.d/CVE-2013-2094.conf

=FC=D4=C1 =C4=D9=D2=C1 =CE=C5=C1=CB=D4=D5=C1=CC=D8=CE=C1 =C4=CC=D1 =CD=CE=
=CF=C7=C9=C8 =CE=C1=DB=C9=C8 =D1=C4=C5=D2 =D5=D6=C5 =D3 =CB=CF=CE=C3=C1 =C1=
=D0=D2=C5=CC=D1.=20
=EF=C2=CC=C1=C4=C1=D4=C5=CC=D1=CD =D3=D7=C5=D6=C9=C8 =D1=C4=C5=D2 std-def, =
std-pae =C9 un-def =C9=DA p6, t6, p7
=C9 sisyphus =CE=C5 =CF =DE=C5=CD =C2=C5=D3=D0=CF=CB=CF=C9=D4=D8=D3=D1.

--=20
glebfm
=E7=CC=C5=C2 =E6=CF=D4=C5=CE=C7=C1=D5=DC=D2-=ED=C1=CC=C9=CE=CF=D7=D3=CB=C9=
=CA