Hello! On 19 Mar 2004 at 14:03 +0100, Sebastian Schmitt wrote: > > > is there a kernel patch/update for the 'do_mremap VMA limit local > > > privilege escalation vulnerability' described in > > > http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt ? > > > > That link provides the CVE identification CAN-2004-0077. > > > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0077 lists several > > Debian security advisories related to this issue. > [...] > > but these don't deal with 2.4.22 kernels .... only 2.4.16, 2.4.17 and > 2.4.18.... The Debian security team is "only" supporting stable, and kernel 2.4.22 just isn't part of Woody. When running stable, you basically have two options: Track the distribution kernel (version 2.4.18, which is regularly getting security updates), or use the latest kernel sources. They can be obtained either from the 'unstable' distribution or, of course, directly from kernel.org. Regards, Elmar -- [ GnuPG: D8A88C0D / 2407 063C 1C92 90E9 4766 B170 5E95 0D7F D8A8 8C0D ] ······································································· Work is the curse of the drinking classes. -- Oscar Wilde
Attachment:
pgpkTqEltD4jm.pgp
Description: PGP signature