Re: Backport of the integer overflow in the brk system call

To: debian-devel@lists.debian.org
Subject: Re: Backport of the integer overflow in the brk system call
From: Brian May <bam@debian.org>
Date: Thu, 4 Dec 2003 10:34:53 +1100
Message-id: <[🔎] 20031203233453.GB2658@snoopy.apana.org.au>
Mail-followup-to: Brian May <bam@debian.org>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 20031203015711.GB20026@lina.inka.de>
References: <[🔎] 3FCBCF99.3000907@sentinel.dk> <[🔎] E1AR6Vn-0001YY-Vx@mid.downhill.at.eu.org> <[🔎] 20031202232021.GA32333@daedalus.andrew.net.au> <[🔎] 200312031117.19034.russell@coker.com.au> <[🔎] 20031203005423.GA1132@daedalus.andrew.net.au> <[🔎] 20031203015711.GB20026@lina.inka.de>

On Wed, Dec 03, 2003 at 02:57:11AM +0100, Bernd Eckenfels wrote:
> On Wed, Dec 03, 2003 at 10:54:24AM +1000, Andrew Pollock wrote:
> > The only way to have avoided this kernel vulnerability from day-0 of
> > discovery/fix release would have been to be constantly upgrading to
> > pre-release kernels.
> 
> Yes but also the debian servers would not have been vulnerable if they had
> used 2.4.23. At least not at that point in time.

Just because Debian doesn't have a time machine...

There is simply no excuse!

;-)
-- 
Brian May <bam@debian.org>

Reply to:

References:
- Backport of the integer overflow in the brk system call
  - From: Frederik Dannemare <tux@sentinel.dk>
- Re: Backport of the integer overflow in the brk system call
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-lists@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Russell Coker <russell@coker.com.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-devel@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Bernd Eckenfels <lists@lina.inka.de>

Prev by Date: RE: development environment question
Next by Date: Re: packages/projects/positions up for adoption
Previous by thread: Re: Backport of the integer overflow in the brk system call
Next by thread: apt-rpm article -- the features we don't have
Index(es):
- Date
- Thread