Mailinglist Archive: opensuse-security (33 mails)

< Previous Next >
Re: [opensuse-security] Possible local root exploit in the kernel
  • From: Crispin Cowan <crispin@xxxxxxxxxxxxxxxx>
  • Date: Sun, 10 Feb 2008 22:02:10 -0800
  • Message-id: <47AFE4E2.4060505@xxxxxxxxxxxxxxxx>
Cristian Rodríguez wrote:
Paul Elliott escribió:
Are you going to call people in to fix it on sunday or wait and
have a meeting about it?
even if sometimes does not look like, programmers have a life and need
rest on weekends ;) , packages also need QA and go via th regular
mainteniance process, so it may take a while...
It's a local exploit; the attacker has to already be logged into your
box to exploit it.

If you have hostile users logged into your box, and this patch is
urgent, then you have worse problems than this patch :-)

Crispin

--
Crispin Cowan, Ph.D. http://crispincowan.com/~crispin
Botnets are the only commercially viable utility computing market

---------------------------------------------------------------------
To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx

< Previous Next >