What about non-vulnerable systems?
Posted Aug 18, 2009 17:20 UTC (Tue) by michaelkjohnson
Parent article: Null pointers, one month later
As of this writing, no other distributors have fixed this problem
As Brad Spengler pointed out and I noticed separately before becoming aware of Brad's analysis, rPath Linux is not vulnerable in its default configuration (and I doubt that anyone is changing vm.mmap_min_addr on their rPath Linux-based systems).
We are still going to release a new kernel that has these specific issues addressed, but the priority isn't quite as high given the lack of vulnerability.
to post comments)