[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Linux kernel vulnerabilities

Subject: Re: [cobalt-security] Linux kernel vulnerabilities
From: Damian Gerow <dgerow@xxxxxxxxxxx>
Date: Wed, 7 Mar 2001 14:02:10 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Tue, Mar 06, 2001 at 06:29:13PM -0500, Gerald Waugh wrote:
> February 9, 2001
> Two serious Linux kernel vulnerabilities have just been announced (information
> leak in sysctl(2) on Linux 2.2, and a race condition in execve(2) on both 2.2
> and 2.0). Both can result in a local root compromise. The vulnerabilities are
> fixed with Linux 2.2.18-ow4 and 2.0.39-ow2 patches, as well as for future kernel
> versions. Please, upgrade to at least one of these two versions of the
> kernel/patch.
> http://www.openwall.com/linux/
> 
> Are these vulnerabilites of concern for the Cobalt RaQ
> RaQ2  2.0.34C52_SK
> RaQ3  2.2.14C10
> RaQ4  2.2.14C11
> 
> Gerald

How about the Qube?  And if so, how long until patches come out?

References:
- RE: [cobalt-security] phpmyadmin protected by >htaccess
  - From: Florian Bruckner
- [cobalt-security] Linux kernel vulnerabilities
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-security] RE: 'On my Soap Box'
Next by Date: [cobalt-security] "Security is easy"
Previous by thread: [cobalt-security] Linux kernel vulnerabilities
Next by thread: Re: [cobalt-security] phpmyadmin protected by >htaccess

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index