[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Linux kernel vulnerabilities
- Subject: [cobalt-security] Linux kernel vulnerabilities
- From: "Gerald Waugh" <gerald@xxxxxxxxx>
- Date: Tue, 6 Mar 2001 18:29:13 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
February 9, 2001
Two serious Linux kernel vulnerabilities have just been announced (information
leak in sysctl(2) on Linux 2.2, and a race condition in execve(2) on both 2.2
and 2.0). Both can result in a local root compromise. The vulnerabilities are
fixed with Linux 2.2.18-ow4 and 2.0.39-ow2 patches, as well as for future kernel
versions. Please, upgrade to at least one of these two versions of the
kernel/patch.
http://www.openwall.com/linux/
Are these vulnerabilites of concern for the Cobalt RaQ
RaQ2 2.0.34C52_SK
RaQ3 2.2.14C10
RaQ4 2.2.14C11
Gerald