[opensuse-security] NFS bug?
Hi, the patch for the NFS bug was release by the -stable team for 2.6.18/19/20. I'm not sure if earlier version are not affected or just no longer maintained by them. If 2.6.16 is affected, too, is there a planned release date for the outstanding kernel update that was mentioned in the last summary report? cu, Frank -- Dipl.-Inform. Frank Steiner Web: http://www.bio.ifi.lmu.de/~steiner/ Lehrstuhl f. Bioinformatik Mail: http://www.bio.ifi.lmu.de/~steiner/m/ LMU, Amalienstr. 17 Phone: +49 89 2180-4049 80333 Muenchen, Germany Fax: +49 89 2180-99-4049 * Rekursion kann man erst verstehen, wenn man Rekursion verstanden hat. * --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
On Tue, Feb 20, 2007 at 02:04:21PM +0100, Frank Steiner wrote:
Hi,
the patch for the NFS bug was release by the -stable team for 2.6.18/19/20. I'm not sure if earlier version are not affected or just no longer maintained by them.
If 2.6.16 is affected, too, is there a planned release date for the outstanding kernel update that was mentioned in the last summary report?
Earlier versions are also affected. SUSE Linux Enterprise 10 + SUSE Linux 10.1 will receive the kernel update containing this fix soon. (I expect within this week). The other versions will take some longer time. Note that you need to have NFS exposed to the attacker to make this problematic. Ciao, Marcus --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
Marcus Meissner wrote
SUSE Linux Enterprise 10 + SUSE Linux 10.1 will receive the kernel update containing this fix soon. (I expect within this week).
Thanks!
Note that you need to have NFS exposed to the attacker to make this problematic.
Students are always evil... :-) -- Dipl.-Inform. Frank Steiner Web: http://www.bio.ifi.lmu.de/~steiner/ Lehrstuhl f. Bioinformatik Mail: http://www.bio.ifi.lmu.de/~steiner/m/ LMU, Amalienstr. 17 Phone: +49 89 2180-4049 80333 Muenchen, Germany Fax: +49 89 2180-99-4049 * Rekursion kann man erst verstehen, wenn man Rekursion verstanden hat. * --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
On Tue, Feb 20, 2007 at 05:24:57PM +0100, Frank Steiner wrote:
Marcus Meissner wrote
SUSE Linux Enterprise 10 + SUSE Linux 10.1 will receive the kernel update containing this fix soon. (I expect within this week).
Thanks!
Note that you need to have NFS exposed to the attacker to make this problematic.
Students are always evil... :-)
More information: SUSE Linux 9.3 and SLES 9 are not affected by this problem. SUSE Linux 10.0 and openSUSE 10.2 are affected and will receive updates in the next weeks. Ciao, Marcus --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org
participants (2)
-
Frank Steiner -
Marcus Meissner