Re: [DSA 1494-1] Still vulnerable?

To: Jens Schüßler <jgs@trash.net>
Cc: debian-security@lists.debian.org
Subject: Re: [DSA 1494-1] Still vulnerable?
From: Florian Weimer <fw@deneb.enyo.de>
Date: Tue, 12 Feb 2008 20:03:41 +0100
Message-id: <[🔎] 87lk5q3sky.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 20080212180115.GA11150@home.sge.kicks-ass.org> ("Jens Schüßler"'s message of "Tue, 12 Feb 2008 19:01:15 +0100")
References: <[🔎] 20080212180115.GA11150@home.sge.kicks-ass.org>

* Jens Schüßler:

> I just upgraded my linux-source-2.6.18 to 2.6.18.dfsg.1-18etch1_all and
> build a new linux-image. But after installing an rebooting I still was 
> able to become root with this exploit:
> http://milw0rm.com/exploits/5092
>
> Can anyone reproduce this?

Not in our tests.  Are you sure you're running the new kernel?  What
does "uname -a" say?

Has this machine been upgraded from sarge?  Then you need to edit
/etc/kernel-img.conf to adjust the path to update-grub (or just use
"update-grub" without path).

Reply to:

Follow-Ups:
- Re: [DSA 1494-1] Still vulnerable?
  - From: Jens Schüßler <jgs@trash.net>
- Re: [DSA 1494-1] Still vulnerable?
  - From: Martin Spinassi <mylists@itcom.com.ar>

References:
- [DSA 1494-1] Still vulnerable?
  - From: Jens Schüßler <jgs@trash.net>

Prev by Date: [DSA 1494-1] Still vulnerable?
Next by Date: DSA-1494-1 linux-2.6 for vserver
Previous by thread: [DSA 1494-1] Still vulnerable?
Next by thread: Re: [DSA 1494-1] Still vulnerable?
Index(es):
- Date
- Thread