Re: bf2.4 and the ptrace exploit

To: debian-user@lists.debian.org
Subject: Re: bf2.4 and the ptrace exploit
From: Markus Dejmek <markus@dejmek.at>
Date: Tue, 9 Sep 2003 16:12:37 -0700
Message-id: <[🔎] 200309091612.37331.markus@dejmek.at>
Reply-to: markus@dejmek.at
In-reply-to: <[🔎] bjld08$26a$1@sea.gmane.org>
References: <[🔎] 20030909190849.GA9179@192.168.0.5> <[🔎] bjld08$26a$1@sea.gmane.org>

Hi, 

I just read that the exploit is fixed in kernel-image-2.5.18-7.
But it is not in the stable tree ?

mfg Markus

On Tuesday 09 September 2003 01:26 pm, Andreas Janssen wrote:
> Hello
>
> Jean-Michel besnard (<jm-ml@tekkno.net>) wrote:
> > I wonder if there is a non-ptrace-affected 2.4.18-bf2.4 kernel image
> > to be downloaded somewhere.
> >
> > I have to apt-get install'ed kernel-image-2.4.18-bf2.4 but when using
> > this kernel users still can get root access with the ptrace exploit.
> >
> > What I have in my /etc/apt/sources.list:
> >
> > deb ftp://ftp.debian.org/debian/ stable main non-free contrib
> > deb http://non-us.debian.org/debian-non-US stable/non-US main contrib
> > non-free deb http://security.debian.org/ stable/updates main contrib
> > non-free
>
> Use
>
> apt-cache policy kernel-image-2.4.18-bf2.4
>
> to check from where the image was installed and what the installed
> version is. The latest is 2.4.18-5woody4, the original version from
> Woody r1 was 2.4.18-5.
>
> best regards
>         Andreas Janssen
>
> --
> Andreas Janssen
> andreas.janssen@bigfoot.com
> PGP-Key-ID: 0xDC801674
> Registered Linux User #267976

Reply to:

References:
- bf2.4 and the ptrace exploit
  - From: "Jean-Michel besnard <jm-ml@tekkno.net>" <besnard@tekkno.net>
- Re: bf2.4 and the ptrace exploit
  - From: Andreas Janssen <andreas.janssen@bigfoot.com>

Prev by Date: Re: Trouble with DRI (WAS: Re: [ANNOUNCE] New ATI drivers available)
Next by Date: Re: Trouble with DRI (WAS: Re: [ANNOUNCE] New ATI drivers available)
Previous by thread: Re: bf2.4 and the ptrace exploit
Next by thread: Exim, Amavis.
Index(es):
- Date
- Thread