Hole in 64-bit Linux kernel provides root rights
Bryn M. Reeves
bmr at redhat.com
Mon Sep 20 15:17:47 UTC 2010
On 09/20/2010 04:06 PM, JD wrote:
> What is ORIG_RAX in the code?
> It is undefined! Explain how you could have possibly compiled it let
> alone run it.
It's an index into an array of 8-byte register values returned by the
ptrace API. It's defined in sys/reg.h:
$ grep ORIG_RAX /usr/include/sys/reg.h
# define ORIG_RAX 15
And this header is included in the code:
$ grep 'sys\/reg\.h' /tmp/robert_you_suck.c
#include <sys/reg.h>
Regards,
Bryn.
More information about the users
mailing list