Re: 2.2.18 exploit, and updating the kernel

To: debian-security@lists.debian.org
Subject: Re: 2.2.18 exploit, and updating the kernel
From: "Francesco P. Lovergine" <frankie@debian.org>
Date: Sat, 16 Mar 2002 09:13:25 +0100
Message-id: <[🔎] 20020316081325.GC1258@localhost.localdomain>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 191.3d05c2f.29c3dac6@aol.com>
References: <[🔎] 191.3d05c2f.29c3dac6@aol.com>

On Fri, Mar 15, 2002 at 06:16:22PM -0500, DORolfe@aol.com wrote:
> I have a potato system - with the 2.2.18 kernel. Somone has gotten into a box 
> on my network and used this exploit to gain root: 
> http://:infected.ilm.net/xpl0itz/l1nux/epcs2.c+epcs2&hl=en&ie=ISO-8859-1
> The other boxes that are net accessible are openbsd -- This system is a dual 
> p6 so I need debian for smp.
> 
> Is there a proper 'debian' way to go about patching the kernel against this 
> exploit, or updating the kernel to 2.4. 
> 

2.2.18 is deprecated. Use the latest one (2.2.19) in potato. 
It's rock solid (some security patches were backported in it).

-- 
Francesco P. Lovergine

Reply to:

References:
- 2.2.18 exploit, and updating the kernel
  - From: DORolfe@aol.com

Prev by Date: Re: wierd connection attempt
Next by Date: Re: udp port 32794
Previous by thread: Re: 2.2.18 exploit, and updating the kernel
Next by thread: Re: 2.2.18 exploit, and updating the kernel
Index(es):
- Date
- Thread