Re: [SECURITY] [DSA-047-1] multiple kernel problems

To: debian-user <debian-user@lists.debian.org>
Subject: Re: [SECURITY] [DSA-047-1] multiple kernel problems
From: Ethan Benson <erbenson@alaska.net>
Date: Sun, 15 Apr 2001 16:47:26 -0800
Message-id: <[🔎] 20010415164726.D2127@plato.local.lan>
Mail-followup-to: debian-user <debian-user@lists.debian.org>
In-reply-to: <[🔎] 20010415172138.A24890@navel.introspect>; from kmself@ix.netcom.com on Sun, Apr 15, 2001 at 05:21:38PM -0700
References: <20010416020820.A1419@cistron.nl> <[🔎] 20010415172138.A24890@navel.introspect>

On Sun, Apr 15, 2001 at 05:21:38PM -0700, Karsten M. Self wrote:
[snip DSA]
> 
> Does anyone know:
> 
>   - If these problems effected other 2.2.x kernels?

yes all of them.  

>   - If they effected user-compiled kernels?

yes.  though some of the holes would not affect you depending on your
kernel configuration, such as the binfmt_misc, if you had that turned
off it obviously could not be exploited.

but ptrace affects you no matter how you config your kernel as does
sysctl().  

there ARE root exploits for the ptrace thing in the wild now (have
been since the day after 2.2.19 was released).  upgrading is highly
advisable.  

-- 
Ethan Benson
http://www.alaska.net/~erbenson/

Attachment: pgpaU5il1FR_6.pgp
Description: PGP signature

Reply to:

References:
- Re: [SECURITY] [DSA-047-1] multiple kernel problems
  - From: "Karsten M. Self" <kmself@ix.netcom.com>

Prev by Date: Re: newbie fighting with Helix Gnome
Next by Date: Re: newbie fighting with Helix Gnome
Previous by thread: Re: [SECURITY] [DSA-047-1] multiple kernel problems
Next by thread: Re: [debian-user] Warum sollte ich gerade Debian Linux kaufen?
Index(es):
- Date
- Thread