Mailinglist Archive: opensuse-security (570 mails)
| < Previous | Next > |
Re: [suse-security] kernel do_mremap local privilege escalation vulnerability
- From: Anthony Edwards <anthony.edwards@xxxxxxxxxxxxxx>
- Date: Mon, 5 Jan 2004 22:22:14 +0000
- Message-id: <20040105222214.GB2619@xxxxxxxxxxxxxxxxxxxxxxxx>
On Mon, Jan 05, 2004 at 10:18:44PM +0000, Anthony Edwards wrote:
> On Mon, Jan 05, 2004 at 07:48:03PM +0100, Olaf Kirch wrote:
> > On Mon, Jan 05, 2004 at 08:34:22PM +0200, Radu Voicu wrote:
> > > "Yes, SuSE kernels are vulnerable to this one"
> > > "No, we don't know when the patch will be available"
> > >
> > > Am I assuming right? :))
> >
> > No, the second answer is indeed "now". FTP servers should be
> > in the process of syncing them from our staging server.
>
> There is something rather odd about this update. I have attempted
> several times to update the system automatically this evening via YOU,
> however despite:
>
> anthony@catfish:~> rpm -qf /boot/vmlinuz
> k_deflt-2.4.20-101
>
> YOU repeatedly attempts to download and install k_athlon. Obviously,
> since this is not what I want (the system is a Pentium III 550Mhz),
> I have aborted this update before completion in each case.
>
> Does anyone know what is causing this, and what the fix might be
> (obviously I could download the k_deflt package and install it
> manually, but prefer to use YOU wherever possible)?
I should add, perhaps, that I am running SuSE 8.2.
--
Anthony Edwards * anthony.edwards@xxxxxxxxxxxxxx
Abuse Team Manager * Easynet UK Abuse Team
Easynet Ltd * DDI: 0161 227 0707
http://www.uk.easynet.net * Fax: 0845 333 4503
> On Mon, Jan 05, 2004 at 07:48:03PM +0100, Olaf Kirch wrote:
> > On Mon, Jan 05, 2004 at 08:34:22PM +0200, Radu Voicu wrote:
> > > "Yes, SuSE kernels are vulnerable to this one"
> > > "No, we don't know when the patch will be available"
> > >
> > > Am I assuming right? :))
> >
> > No, the second answer is indeed "now". FTP servers should be
> > in the process of syncing them from our staging server.
>
> There is something rather odd about this update. I have attempted
> several times to update the system automatically this evening via YOU,
> however despite:
>
> anthony@catfish:~> rpm -qf /boot/vmlinuz
> k_deflt-2.4.20-101
>
> YOU repeatedly attempts to download and install k_athlon. Obviously,
> since this is not what I want (the system is a Pentium III 550Mhz),
> I have aborted this update before completion in each case.
>
> Does anyone know what is causing this, and what the fix might be
> (obviously I could download the k_deflt package and install it
> manually, but prefer to use YOU wherever possible)?
I should add, perhaps, that I am running SuSE 8.2.
--
Anthony Edwards * anthony.edwards@xxxxxxxxxxxxxx
Abuse Team Manager * Easynet UK Abuse Team
Easynet Ltd * DDI: 0161 227 0707
http://www.uk.easynet.net * Fax: 0845 333 4503
| < Previous | Next > |