Re: BF kernels (was: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386))

To: debian-security@lists.debian.org
Subject: Re: BF kernels (was: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386))
From: Michael Stone <mstone@debian.org>
Date: Sat, 17 Apr 2004 10:00:23 -0400
Message-id: <[🔎] 20040417140023.GV1851@mathom.us>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 200404152019.27090.joshua@myinternet.com.au>
References: <m1BDsOO-000olhC@finlandia.Infodrom.North.DE> <[🔎] 20040415080511.GS530@freenet.de> <[🔎] 407E5C3B.5020000@nicholas.net.nz> <[🔎] 200404152019.27090.joshua@myinternet.com.au>

On Thu, Apr 15, 2004 at 08:19:24PM +1000, Joshua Goodall wrote:

In other words, people are ready to pounce, and that short gap of timeafter server installation and before installing patched code cannot beconsidered "safe". Quite the opposite.


Note that if you're doing a network install you can point to
security.d.o and never have any vulnerable network services installed on
the machine.

Mike Stone

Reply to:

Follow-Ups:
- Re: BF kernels (was: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386))
  - From: Horst Pflugstaedt <Pfaedt@uni-duisburg.de>

References:
- Re: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386)
  - From: Michelle Konzack <linux4michelle@freenet.de>
- Re: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386)
  - From: Tim Nicholas <tim@nicholas.net.nz>
- Re: BF kernels (was: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386))
  - From: Joshua Goodall <joshua@myinternet.com.au>

Prev by Date: Re: [SECURITY] [DSA 479-1] New Linux 2.4.18 packages fix local root exploit (source+alpha+i386+powerpc)
Next by Date: Re: [SECURITY] [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386)
Previous by thread: Re: BF kernels
Next by thread: Re: BF kernels (was: [DSA 479-2] New Linux 2.4.18 packages fix local root exploit (i386))
Index(es):
- Date
- Thread