[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA-047-1] multiple kernel problems



On Sun, Apr 15, 2001 at 05:21:38PM -0700, Karsten M. Self wrote:
[snip DSA]
> 
> Does anyone know:
> 
>   - If these problems effected other 2.2.x kernels?

yes all of them.  

>   - If they effected user-compiled kernels?

yes.  though some of the holes would not affect you depending on your
kernel configuration, such as the binfmt_misc, if you had that turned
off it obviously could not be exploited.

but ptrace affects you no matter how you config your kernel as does
sysctl().  

there ARE root exploits for the ptrace thing in the wild now (have
been since the day after 2.2.19 was released).  upgrading is highly
advisable.  

-- 
Ethan Benson
http://www.alaska.net/~erbenson/

Attachment: pgpC9s0vqIrjB.pgp
Description: PGP signature


Reply to: