[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: kernel-image not installed by default in woody

On Mon, 2003-12-22 at 23:19, Matt Zimmerman wrote:
> On Mon, Dec 22, 2003 at 07:31:23PM -0500, Greg Folkert wrote:
> > Not only should you be convinced, you should be thankful. The 2.2.20
> > kernel is not vulnerable to the recent ptrace().
> I beg your pardon?  Assuming you are talking about CAN-2003-0127 when you
> say "ptrace", 2.2.20 most certainly *was* vulnerable, hence DSA-336-1.
> kernel-image-2.2.20-i386 version 2.2.20-5woody3 was built to correct these
> problems in the default installation kernel.
My misunderstanding... I am confused about the pre 2.4.23 and pre
2.6.0-test6 kernels being vulnerable to a local exploit that was used to
compromise 4 d.o machine. My mistake. Retracted.

> It was my understanding from Joey's 3.0r1 progress reports that this package
> was to be accepted into 3.0r1.  Was this somehow overlooked, or has there
> been a misunderstanding?
> > By default NO Kernel is installed except the one you told it to at the
> > beginning of the process.
> What?
In the Woody Installer, where does the kernel get installed from...
usually from the CDROM. But it is a "untracked by dpkg" package. I have
to install a "real" kernel-image-2.4.18-bf24 (or
kernel-image-2.4.18-<arch> or kernel-image-2.4.18-1-<arch>) so it is
managed by dpkg.

Unless I am doing something wrong.(which I just might be then...)

Of course the last time I used the woody installer was quite a long time
ago. I have used a chroot install for sometime. Either by debootstrap or
by manual extraction an setup...

REMEMBER ED CURRY! http://www.iwethey.org/ed_curry

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: