[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1111-1] New Linux kernel 2.6.8 packages fix privilege escalation

Arnd Hannemann wrote:
>> - --------------------------------------------------------------------------
>> Debian Security Advisory DSA 1111-1                    security@debian.org
>> http://www.debian.org/security/                               Dann Frazier
>> Jul 16th, 2006                          http://www.debian.org/security/faq
>> - --------------------------------------------------------------------------
>>
>> Package        : kernel-source-2.6.8 et. al.
>> Vulnerability  : race condition
>> Problem-Type   : local
>> Debian-specific: no
>> CVE ID         : CVE-2006-3625
>>   
> shouldn't that read CVE-2006-3626 instead?
> http://www.securityfocus.com/bid/18992
>>      Intel IA-32 architecture    2.6.8-16sarge4

This was an error on my side, it's already corrected on the web:
http://www.debian.org/security/2006/dsa-1111

> Why is the package name still "kernel-image-2.6.8-3-686" instead of "kernel-image-2.6.8-4-686"?

There hasn't been an ABI change this time, so this wasn't necessary.

Cheers,
        Moritz
Reply to: