Kernel capability bug for kernels < 2.2.16

To: debian-security@lists.debian.org
Subject: Kernel capability bug for kernels < 2.2.16
From: Jean-Philippe Guérard <jean-philippe.guerard@mail.dotcom.fr>
Date: Fri, 16 Jun 2000 08:39:17 +0000
Message-id: <[🔎] 20000616083917.A824@tigreraye.yi.org>
Reply-to: jean-philippe.guerard@mail.dotcom.fr

It seems that both a new kernel version (2.2.16), and a new version
of sendmail have been released to fix a very serious security bug.

See http://www.sendmail.org/sendmail.8.10.1.LINUX-SECURITY.txt

Shouldn't both sendmail and the current kernel be updated ASAP ?

Also :

----------------------------------------------------------------------
A bug in xinetd versions prior to 2.1.8.8p3 will cause xinetd to allow
connections to anyone if the configuration specifies a limitation to a
hostname(s), and the incoming connection does not have a valid reverse
DNS entry.

Upgrade to version 2.1.8.8p3, available at:
www.synack.net/xinetd/
----------------------------------------------------------------------
(source http://www.sans.org )

Shouldn't it also be updated ?

-- 
Jean-Philippe Guérard

Reply to:

Follow-Ups:
- Re: Kernel capability bug for kernels < 2.2.16
  - From: Tollef Fog Heen <tollef@add.no>

Prev by Date: Re: How can I help ?
Next by Date: Re: Kernel capability bug for kernels < 2.2.16
Previous by thread: Re: [Q] intrusion
Next by thread: Re: Kernel capability bug for kernels < 2.2.16
Index(es):
- Date
- Thread