Re: AMD64 port compromised ?

To: Matthew Robinson <matt@fone-me.com>
Cc: debian-amd64@lists.debian.org
Subject: Re: AMD64 port compromised ?
From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Date: Fri, 14 Jul 2006 10:49:47 +0200
Message-id: <[🔎] 877j2gefkk.fsf@informatik.uni-tuebingen.de>
In-reply-to: <[🔎] 44B64B72.6070909@fone-me.com> (Matthew Robinson's message of "Thu, 13 Jul 2006 14:32:34 +0100")
References: <[🔎] 44B5EA0A.7000807@labri.fr> <[🔎] 20060713075336.GA31729@capsaicin.mamane.lu> <[🔎] 44B64B72.6070909@fone-me.com>

Matthew Robinson <matt@fone-me.com> writes:

> Does anybody have any more information on the exploit? I'd like to know if I
> am running any of the software, etc.

The exploit suposedly was a local privilege escalation exploit using
the new core dump feature from 2.6.13+. Is has been fixed (among
others) in 2.6.17.4. Check the changelog for the official CAN number
of the exploit.

Stable kernels (2.6.8) aren't affected but testing/sid are.

MfG
        Goswin

Reply to:

References:
- AMD64 port compromised ?
  - From: Emmanuel Fleury <fleury@labri.fr>
- Re: AMD64 port compromised ?
  - From: Lionel Elie Mamane <lionel@mamane.lu>
- Re: AMD64 port compromised ?
  - From: Matthew Robinson <matt@fone-me.com>

Prev by Date: Re: No sound on etch when using video players
Next by Date: Re: Broken applications: Could we be honest?
Previous by thread: Re: AMD64 port compromised ?
Next by thread: Re: AMD64 port compromised ?
Index(es):
- Date
- Thread