<feed xmlns='http://www.w3.org/2005/Atom'>
<title>CVE-2008-5736, branch master</title>
<subtitle>Local root exploit for FreeBSD &lt;= 6.4-Stable.</subtitle>
<id>https://git.zx2c4.com/CVE-2008-5736/atom/?h=master</id>
<link rel='self' href='https://git.zx2c4.com/CVE-2008-5736/atom/?h=master'/>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/'/>
<updated>2011-03-09T18:39:56Z</updated>
<entry>
<title>Add title.</title>
<updated>2011-03-09T18:39:56Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-03-09T18:39:56Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=41baf29b19fb984b81da4ebd45c8be98a6b3c93e'/>
<id>urn:sha1:41baf29b19fb984b81da4ebd45c8be98a6b3c93e</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Add l33t comment.</title>
<updated>2011-02-28T01:52:59Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-28T01:52:59Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=19e04e2be9f96d27160bbccc9da952828bf161af'/>
<id>urn:sha1:19e04e2be9f96d27160bbccc9da952828bf161af</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Print to stdout, not stderr.</title>
<updated>2011-02-28T01:06:46Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-28T01:06:46Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=41ee184ac9c9ad06221abd3464f1eba81f71167f'/>
<id>urn:sha1:41ee184ac9c9ad06221abd3464f1eba81f71167f</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Get out of jail by copying fds from pid 1.</title>
<updated>2011-02-27T08:47:07Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T08:47:07Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=4c9211d7f685f873aa3ce5796c0f4e63e6b50ddd'/>
<id>urn:sha1:4c9211d7f685f873aa3ce5796c0f4e63e6b50ddd</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Don't copy. Just jmp to function.</title>
<updated>2011-02-27T06:48:51Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T06:48:51Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=83ff9d1ee5964795911c113fb8962de91e58398e'/>
<id>urn:sha1:83ff9d1ee5964795911c113fb8962de91e58398e</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Non functional jail escape functionality.</title>
<updated>2011-02-27T06:21:43Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T06:21:43Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=e90174bd63a6cbb3403e222e9bb72ea6949e332c'/>
<id>urn:sha1:e90174bd63a6cbb3403e222e9bb72ea6949e332c</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Clean up headers. Make l33t.</title>
<updated>2011-02-27T03:03:28Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T02:57:37Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=60cecd4a4ec67109f421ffd7ebb00589e30f0cf8'/>
<id>urn:sha1:60cecd4a4ec67109f421ffd7ebb00589e30f0cf8</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Since the template search is a little buggy and sometimes causes panic, just do a more traditional UID=0 for the current thread and then execl sh into the process.</title>
<updated>2011-02-27T02:16:18Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T02:16:18Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=395301fae72bdb466a51f8cc1ea950fe8db8be64'/>
<id>urn:sha1:395301fae72bdb466a51f8cc1ea950fe8db8be64</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Instead of going to a fixed place, as Don does, search the entire kernel for the locks that are commonly before allproc.</title>
<updated>2011-02-27T02:15:01Z</updated>
<author>
<name>Adam Weiss</name>
<email>adam@signal11.com</email>
</author>
<published>2011-02-27T02:15:01Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=71c0068b8a7ea89731fcd074a273a77671be08d1'/>
<id>urn:sha1:71c0068b8a7ea89731fcd074a273a77671be08d1</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Import Don Bailey's original exploit code.</title>
<updated>2011-02-27T02:13:48Z</updated>
<author>
<name>Jason A. Donenfeld</name>
<email>Jason@zx2c4.com</email>
</author>
<published>2011-02-27T02:13:48Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/CVE-2008-5736/commit/?id=cc0d7ca2b5f3bde23d10d625e37c60d2af8cc761'/>
<id>urn:sha1:cc0d7ca2b5f3bde23d10d625e37c60d2af8cc761</id>
<content type='text'>
</content>
</entry>
</feed>
