On 02/25/2013 01:45 PM, Mathias Krause wrote:
Did you even try to run the exploit on a v3.2 kernel? Or even more
simple, looked at the code of a v3.2 kernel? There is no sock_diag
anywhere in the kernel; there is only inet_diag. And inet_diag hadn't
and still does not have the out-of-bounds access issue. So no, this
bug is non-existent on a v3.2 kernel.
The bug was introduced with this commit:
This commit took place during kernel version 3.2.0-rc4, so yes, it does
seem to affect 3.2 kernels.