Just for the record: Do not use the "hotfix" named disable-vmsplice-if- exploitable.c. The hotfix first tries to run the exploit (which would be totally unnecessary for the actual "fix" by the way and is therefore a very dumb thing to do), and this still leads to kernel memory corruption which will render the system unstable. You can imagine what might come from corrupted kernel beside a simple crash (e.g. data loss).
It shall be possible to remove the actual exploit attempt from the "fix", but seems to be another solution which apparently compiles to a kernel module which will catch and report attempts to (ab)use vmsplice at http://home.powertech.no/oystein/ptpatch2008/ptpatch2008.c Regards Michael -- It's an insane world, but i'm proud to be a part of it. -- Bill Hicks
