[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: bf2.4 and the ptrace exploit

Hi, 

The exploit still works with the latest 2.4.18-5woody4. 
I just tried it. 

testserver:~# apt-cache policy kernel-image-2.4.18-bf2.4
kernel-image-2.4.18-bf2.4:
  Installed: 2.4.18-5woody4
  Candidate: 2.4.18-5woody4
  Version Table:
 *** 2.4.18-5woody4 0
        500 http://security.debian.org stable/updates/main Packages
        100 /var/lib/dpkg/status
     2.4.18-5 0
        500 http://http.us.debian.org stable/main Packages



On Tuesday 09 September 2003 01:26 pm, Andreas Janssen wrote:
> Hello
>
> Jean-Michel besnard (<jm-ml@tekkno.net>) wrote:
> > I wonder if there is a non-ptrace-affected 2.4.18-bf2.4 kernel image
> > to be downloaded somewhere.
> >
> > I have to apt-get install'ed kernel-image-2.4.18-bf2.4 but when using
> > this kernel users still can get root access with the ptrace exploit.
> >
> > What I have in my /etc/apt/sources.list:
> >
> > deb ftp://ftp.debian.org/debian/ stable main non-free contrib
> > deb http://non-us.debian.org/debian-non-US stable/non-US main contrib
> > non-free deb http://security.debian.org/ stable/updates main contrib
> > non-free
>
> Use
>
> apt-cache policy kernel-image-2.4.18-bf2.4
>
> to check from where the image was installed and what the installed
> version is. The latest is 2.4.18-5woody4, the original version from
> Woody r1 was 2.4.18-5.
>
> best regards
>         Andreas Janssen
>
> --
> Andreas Janssen
> andreas.janssen@bigfoot.com
> PGP-Key-ID: 0xDC801674
> Registered Linux User #267976
Reply to: