Re: When are security updates effective?

To: debian-security@lists.debian.org
Subject: Re: When are security updates effective?
From: Michael Stone <mstone@debian.org>
Date: Fri, 01 Sep 2006 18:56:17 -0400
Message-id: <[🔎] 20060901225614.GG24013@mathom.us>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 20060901212816.GH13910@nalle>
References: <20060829110653.GR13910@nalle> <slrnef9acl.4f4.jmm@inutil.org> <20060831062919.GD13910@nalle> <20060831075526.GF4321@afrika.vzsze.de> <ed6sb3$t32$2@sea.gmane.org> <20060831222327.GA20606@khazad-dum.debian.net> <[🔎] 20060901212816.GH13910@nalle>

On Sat, Sep 02, 2006 at 12:28:17AM +0300, Mikko Rapeli wrote:

- can a process running vulnerable code be exploited to not show the
shared libraries and other non-shared libraries and files it had opened forreading at some point?

Of course it can. And that's irrelevant to the question athand--installing a security update at that point isn't going to help.


Mike Stone

Reply to:

Follow-Ups:
- Re: When are security updates effective?
  - From: Mikko Rapeli <mikko.rapeli@iki.fi>

References:
- Re: When are security updates effective?
  - From: Mikko Rapeli <mikko.rapeli@iki.fi>

Prev by Date: Re: When are security updates effective?
Next by Date: Re: [SECURITY] [DSA 1156-1] New kdebase packages fix information disclosure
Previous by thread: Re: When are security updates effective?
Next by thread: Re: When are security updates effective?
Index(es):
- Date
- Thread