Mailinglist Archive: opensuse-security (409 mails)

< Previous Next >
Re: [suse-security] suse 8.0 local root exploit..
  • From: Roman Drahtmueller <draht@xxxxxxx>
  • Date: Sat, 10 Aug 2002 16:58:40 +0200 (MEST)
  • Message-id: <Pine.LNX.4.44.0208101649480.19883-100000@xxxxxxxxxxxx>
>
> That was the very reason we wanted full disclosure list created because
> things like this do get leaked, and if people are armed with knowledge,
> they can defend. I am sorry that the public leak may cause SuSE problems,
> I can appreciate the pressure it places on the team.
>
> I know that with the current team at SuSE we're in good hands :)
>

Thanks, Len. :-)

Unfortunately, the gobbles people fail to mention some details. There is
no leak.

* We have published the new i4l package on Thursday at short past 6pm.
* The bug is fixed in these packages.
* Sebastian Krahmer has found the bugs.

More to come in the next announcement.

> Len

> > > FYI: http://lists.netsys.com/pipermail/full-disclosure/2002-August/000950.html
> >
> > We've been preparing a security update for this problem and are
> > in the process of releasing it.
> >
> > It seems this leaked somehow :-(
> >
> > Olaf

Grüße,
Roman.
--
- -
| Roman Drahtmüller <draht@xxxxxxx> // "You don't need eyes to see, |
SuSE Linux AG - Security Phone: // you need vision!"
| Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless |
- -


< Previous Next >
References