Current File : //kunden/usr/share/systemtap/examples/security-band-aids/cve-2016-5195.stp

probe kernel.function("mem_write").call ? {
        $count = 0
}

probe kernel.function("mem_write").return ? {
        $return = %{ -EIO %}
}

probe syscall.ptrace {  // includes compat ptrace as well
        $request = 0xfff
}

probe begin {
        printk(0, "CVE-2016-5195 mitigation loaded")
}


probe end {
        printk(0, "CVE-2016-5195 mitigation unloaded")
}