Re: Kernel Vulnerability

To: debian-user@lists.debian.org
Subject: Re: Kernel Vulnerability
From: Joris Huizer <jorishuizer@planet.nl>
Date: Fri, 25 Jun 2004 11:09:42 +0200
Message-id: <[🔎] 40DBEBD6.30407@planet.nl>
In-reply-to: <[🔎] 20040625030125.GB32315@dman13.dyndns.org>
References: <[🔎] 26408.200.155.185.2.1088106727.squirrel@webmail.unixworks.com.br> <[🔎] 200406242332.42179.frederik@dannemare.net> <[🔎] 6.0.1.1.0.20040624200750.01af9ec0@mail.unixworks.com.br> <[🔎] 20040625030125.GB32315@dman13.dyndns.org>

Derrick 'dman' Hudson wrote:

On Thu, Jun 24, 2004 at 08:12:48PM -0300, Fabio Marcos Pedroso Filho wrote:
| No. I am using an own compilation of kernel, but I am using the| kernel-source from debian apt sources. I am using 2.4.19.woody2. But this| release is vulnerable to that local exploit that freeze the system.
I don't know what the security team is doing (although a new
2.6.6 build hit unstable a couple days ago).  However, the patch is a
one-line change to a header file.  You could find that patch on the
web fairly easily and manually merge it into the source tree you build
from to obtain the fix.

-D


I thought the latest 2.4.x kernel was patched?

I don't know wether it would be a problem - but you could download thekernel source from www.kernel.org (it's just you'd be missing patchesfrom debian)


HTH,

Joris

Reply to:

References:
- Kernel Vulnerability
  - From: "Fabio Marcos Pedroso Filho" <fabio@unixworks.com.br>
- Re: Kernel Vulnerability
  - From: Frederik Dannemare <frederik@dannemare.net>
- Re: Kernel Vulnerability
  - From: Fabio Marcos Pedroso Filho <fabio@unixworks.com.br>
- Re: Kernel Vulnerability
  - From: Derrick 'dman' Hudson <dman@dman13.dyndns.org>

Prev by Date: Re: Kernel Panic while booting from 2.6.3
Next by Date: Re: X session
Previous by thread: Re: Kernel Vulnerability
Next by thread: fetchmail
Index(es):
- Date
- Thread