Kernel Econet root exploit

The Gentoo Kernel Team (thanks, asn!) have released 3 patched kernels that cover the Econet root exploit described at:

This covers (CVE-2010-3850), (CVE-2010-3849) and (CVE-2010-4258).

The following gentoo-sources contain the fixes: gentoo-sources-2.6.36-r4, gentoo-sources-2.6.35-r14 and gentoo-sources-2.6.32-r23.

Edit: 2.6.36-r4, not r6, which does not exist, yet.


  1. Stjujsckij Nickolaj

    > The following gentoo-sources contain the fixes: gentoo-sources-2.6.36-r6

    According to sys-kernel/gentoo-sources/ChangeLog, -r4 fixes it. WHere’s the truth?

    Anway, thanks for fix!

  2. Kacper Kowalik

    Judging by the ChangeLog you meant gentoo-sources-2.6.36-r4 (not -r6) 🙂

  3. admin (Post author)


  4. Evrsr


    Could you please merge these warnings in GLSA? I usually keep check for the other packages but the kernel seems to be always left out.

    Best regards

  5. Fab

    No fix for 2.6.34 ?
    I tested the proof-of-concept on my 2.6.34-r12 and result is :

    $ ./full-nelson
    [*] Failed to open file descriptors.

    Maybe the privilege escalation is dependent on the kernel configuration…
    Do I really need to upgrade to 2.6.35 ?

Leave a Comment

Your email address will not be published. Required fields are marked *