[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Linux kernel vulnerabilities

Subject: [cobalt-security] Linux kernel vulnerabilities
From: "Gerald Waugh" <gerald@xxxxxxxxx>
Date: Tue, 6 Mar 2001 18:29:13 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

February 9, 2001
Two serious Linux kernel vulnerabilities have just been announced (information
leak in sysctl(2) on Linux 2.2, and a race condition in execve(2) on both 2.2
and 2.0). Both can result in a local root compromise. The vulnerabilities are
fixed with Linux 2.2.18-ow4 and 2.0.39-ow2 patches, as well as for future kernel
versions. Please, upgrade to at least one of these two versions of the
kernel/patch.
http://www.openwall.com/linux/

Are these vulnerabilites of concern for the Cobalt RaQ
RaQ2  2.0.34C52_SK
RaQ3  2.2.14C10
RaQ4  2.2.14C11

Gerald

Follow-Ups:
- Re: [cobalt-security] Linux kernel vulnerabilities
  - From: Damian Gerow

References:
- RE: [cobalt-security] phpmyadmin protected by >htaccess
  - From: Florian Bruckner

Prev by Date: Re: [cobalt-security] phpmyadmin protected by >htaccess
Next by Date: [cobalt-security] Re: OpenSSH 2.5.1 and OpenSSL Issue
Previous by thread: RE: [cobalt-security] phpmyadmin protected by >htaccess
Next by thread: Re: [cobalt-security] Linux kernel vulnerabilities

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index