From owner-freebsd-hackers@FreeBSD.ORG Wed Jul 18 20:59:23 2012 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 69F06106566B for ; Wed, 18 Jul 2012 20:59:23 +0000 (UTC) (envelope-from jamebus@gmail.com) Received: from mail-lb0-f182.google.com (mail-lb0-f182.google.com [209.85.217.182]) by mx1.freebsd.org (Postfix) with ESMTP id D8CEF8FC0C for ; Wed, 18 Jul 2012 20:59:22 +0000 (UTC) Received: by lbon10 with SMTP id n10so3323550lbo.13 for ; Wed, 18 Jul 2012 13:59:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=+C1BZnVA60UzfNwAaOQD0g/8lwx+Od9OsDhzAasHq1U=; b=xieFe6WcEcV4htPhOh2RTTiRoL/zCK+gnzTjLYZvizIQvAV5rh1wHJCRdfPxZsLh6T qUZ24Yma7pUmlzZNYRRdnL6tBvMJ0UNgqGtSF3vUrpgrmh5lmWEgR9BBonN2s/nm73nh 3v3zqVHtV7qwV2NWbKfaTIHnuIpHGSkyjeu3lDJ0eDXuW1cyCNk/5ZvRDwCuyajKJDli jsAT5mHNKp4k+npH4dMIX6RUhJqvPF6XeyIU1q+3qJxhVeasjD6pEgtnInRLKahc498P fv4ROXHsr8Gjdx92GJgkiGywrrQyGEUi3wLwwjRBqTO2FHDbMDrBCDN8Mwrt5Pdk4nMX nRkw== MIME-Version: 1.0 Received: by 10.152.135.200 with SMTP id pu8mr5207868lab.8.1342645161462; Wed, 18 Jul 2012 13:59:21 -0700 (PDT) Sender: jamebus@gmail.com Received: by 10.112.78.9 with HTTP; Wed, 18 Jul 2012 13:59:21 -0700 (PDT) In-Reply-To: References: <4FFF4B95.9080105@delphij.net> Date: Wed, 18 Jul 2012 15:59:21 -0500 X-Google-Sender-Auth: Co0tNPTECX_uugS0eMqzSJvi9qo Message-ID: From: James To: Bill Crisp Content-Type: multipart/mixed; boundary=f46d04374547e88d5604c520efff Cc: freebsd-hackers@freebsd.org, Xin Li Subject: Re: CVE-2012-0217 Intel's sysret Kernel Privilege Escalation and FreeBSD 6.2/6.3 X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Jul 2012 20:59:23 -0000 --f46d04374547e88d5604c520efff Content-Type: text/plain; charset=ISO-8859-1 On Wed, Jul 18, 2012 at 3:26 PM, Bill Crisp wrote: > > Unfortunately I tried to put the code from the patch in place but there > seems to be some missing functions in the header file and too many > arguments to a function and some other errors below: Hi Bill. Yes, the patch for >= FreeBSD 7 won't apply directly to 6. ksi and the refined SIGBUS traps don't exist yet. Here's how I fixed it at work. Using this on multiple releng_6* branches. HTH! -- James. --f46d04374547e88d5604c520efff Content-Type: application/octet-stream; name="CVE-2012-0217_releng_6.patch" Content-Disposition: attachment; filename="CVE-2012-0217_releng_6.patch" Content-Transfer-Encoding: base64 X-Attachment-Id: f_h4sw8opl0 SW5kZXg6IHNyYy9zeXMvYW1kNjQvYW1kNjQvdHJhcC5jCj09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0KLS0tIHNyYy9zeXMv YW1kNjQvYW1kNjQvdHJhcC5jCShyZXZpc2lvbiA0NTY0KQorKysgc3JjL3N5cy9hbWQ2NC9hbWQ2 NC90cmFwLmMJKHJldmlzaW9uIDQ1NjUpCkBAIC04NDYsNiArODQ2LDE3IEBACiAJLyoKIAkgKiBU cmFjZWQgc3lzY2FsbC4KIAkgKi8KKworCS8qCisJICogSWYgdGhlIHVzZXItc3VwcGxpZWQgdmFs dWUgb2YgJXJpcCBpcyBub3QgYSBjYW5vbmljYWwKKwkgKiBhZGRyZXNzLCB0aGVuIHNvbWUgQ1BV cyB3aWxsIHRyaWdnZXIgYSByaW5nIDAgI0dQIGR1cmluZworCSAqIHRoZSBzeXNyZXQgaW5zdHJ1 Y3Rpb24uICBIb3dldmVyLCB0aGUgZmF1bHQgaGFuZGxlciB3b3VsZAorCSAqIGV4ZWN1dGUgd2l0 aCB0aGUgdXNlcidzICVncyBhbmQgJXJzcCBpbiByaW5nIDAgd2hpY2ggd291bGQKKwkgKiBub3Qg YmUgc2FmZS4gIEluc3RlYWQsIHByZWVtcHRpdmVseSBraWxsIHRoZSB0aHJlYWQgd2l0aCBhCisJ ICogU0lHQlVTLgorCSAqLworCWlmICh0ZC0+dGRfZnJhbWUtPnRmX3JpcCA+PSBWTV9NQVhVU0VS X0FERFJFU1MpCisJCXRyYXBzaWduYWwodGQsIFNJR0JVUywgVF9QUk9URkxUKTsKIAlpZiAob3Jp Z190Zl9yZmxhZ3MgJiBQU0xfVCkgewogCQlmcmFtZS50Zl9yZmxhZ3MgJj0gflBTTF9UOwogCQl0 cmFwc2lnbmFsKHRkLCBTSUdUUkFQLCAwKTsK --f46d04374547e88d5604c520efff--