[d-kernel] RHSA-2003:238-01

ALT Linux kernel packages development
 help / color / mirror / Atom feed

* [d-kernel] RHSA-2003:238-01
@ 2003-07-23  3:03 Alexey Borovskoy
  2003-07-23  5:29 ` Ed V. Bartosh
  2003-07-24  7:36 ` Ed V. Bartosh
  0 siblings, 2 replies; 5+ messages in thread
From: Alexey Borovskoy @ 2003-07-23  3:03 UTC (permalink / raw)
  To: devel-kernel

Добрый день.

Updated 2.4 kernel fixes vulnerabilities
http://www.security.nnov.ru/search/document.asp?docid=4884

Меня вот эти штуковины беспокоят:

CAN-2003-0462: Paul Starzetz discovered a file read race 
condition existing in the execve() system call, which could 
cause a local crash.

CAN-2003-0464: A recent change in the RPC code set the reuse flag 
on newly-created sockets.  Olaf Kirch noticed that his could 
allow normal users to bind to UDP ports used for services such 
as nfsd.

CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding 
table could be spoofed by sending forged packets with bogus 
source addresses the same as the local host.

Что думает сообщество? Или только после Феста5?

-- 
Алексей.
JID:alb@jabber.ru

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [d-kernel] RHSA-2003:238-01
  2003-07-23  3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
@ 2003-07-23  5:29 ` Ed V. Bartosh
  2003-07-24  7:36 ` Ed V. Bartosh
  1 sibling, 0 replies; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-23  5:29 UTC (permalink / raw)
  To: alexey_borovskoy; +Cc: ALT Linux kernel packages development

>>>>> "AB" == Alexey Borovskoy writes:

 AB>  Updated 2.4 kernel fixes vulnerabilities
 AB>  http://www.security.nnov.ru/search/document.asp?docid=4884

 AB>  Меня вот эти штуковины беспокоят:

 AB>  CAN-2003-0462: Paul Starzetz discovered a file read race
 AB>  condition existing in the execve() system call, which could
 AB>  cause a local crash.

 AB>  CAN-2003-0464: A recent change in the RPC code set the reuse
 AB>  flag on newly-created sockets.  Olaf Kirch noticed that his
 AB>  could allow normal users to bind to UDP ports used for services
 AB>  such as nfsd.

 AB>  CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding
 AB>  table could be spoofed by sending forged packets with bogus
 AB>  source addresses the same as the local host.

 AB>  Что думает сообщество? Или только после Феста5?

Я поэтому и запостил, думал, что найдутся добровольцы, такие вещи
лучше оперативно делать. 
А несчет феста - я не еду, поэтому планирую этим заняться после 
разборок с lm_sensors. Опять же, если чем-нибудь еще не загрузят :)

Плохо, что RH отдельно эти вещи не обозначает в спеке, не кладет в
отдельные патчи, искать неудобно.

-- 
Best regards,
Ed V. Bartosh

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [d-kernel] RHSA-2003:238-01
  2003-07-23  3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
  2003-07-23  5:29 ` Ed V. Bartosh
@ 2003-07-24  7:36 ` Ed V. Bartosh
  2003-07-24  7:43   ` Ed V. Bartosh
  1 sibling, 1 reply; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-24  7:36 UTC (permalink / raw)
  To: alexey_borovskoy; +Cc: ALT Linux kernel packages development

 AB>  Меня вот эти штуковины беспокоят:

 AB>  CAN-2003-0462: Paul Starzetz discovered a file read race
 AB>  condition existing in the execve() system call, which could
 AB>  cause a local crash.
...

RH патчи выложены сдесь:
http://edbartosh.at.tut.by/kernel.rh9-2.4.20-19.9.tar.bz2

PS: пишу и на список в надежде, что найдутся желающие посмотреть и на
другие темы, не только секурити.

-- 
Best regards,
Ed V. Bartosh

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [d-kernel] RHSA-2003:238-01
  2003-07-24  7:36 ` Ed V. Bartosh
@ 2003-07-24  7:43   ` Ed V. Bartosh
  2003-07-24  8:13     ` Ed V. Bartosh
  0 siblings, 1 reply; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-24  7:43 UTC (permalink / raw)
  To: ALT Linux kernel packages development


>>>>> "EVB" == Ed V. Bartosh writes:

 EVB>  RH патчи выложены сдесь:
 EVB>  http://edbartosh.at.tut.by/kernel.rh9-2.4.20-19.9.tar.bz2

Сори, побились по дороге, перевыложу - напишу сюда.  

-- 
Best regards,
Ed V. Bartosh


^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [d-kernel] RHSA-2003:238-01
  2003-07-24  7:43   ` Ed V. Bartosh
@ 2003-07-24  8:13     ` Ed V. Bartosh
  0 siblings, 0 replies; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-24  8:13 UTC (permalink / raw)
  To: ALT Linux kernel packages development


>>>>> "EVB" == Ed V. Bartosh writes:

 >>>>>>   "EVB" == Ed V. Bartosh writes:
  
 EVB>>   RH патчи выложены сдесь:
 EVB>>   http://edbartosh.at.tut.by/kernel.rh9-2.4.20-19.9.tar.bz2
  
 EVB>  Сори, побились по дороге, перевыложу - напишу сюда.

Перевыложил, проверил, можно забирать.

-- 
Best regards,
Ed V. Bartosh


^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2003-07-24  8:13 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-07-23  3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
2003-07-23  5:29 ` Ed V. Bartosh
2003-07-24  7:36 ` Ed V. Bartosh
2003-07-24  7:43   ` Ed V. Bartosh
2003-07-24  8:13     ` Ed V. Bartosh

ALT Linux kernel packages development

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://lore.altlinux.org/devel-kernel/0 devel-kernel/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 devel-kernel devel-kernel/ http://lore.altlinux.org/devel-kernel \
		devel-kernel@altlinux.org devel-kernel@altlinux.ru devel-kernel@altlinux.com
	public-inbox-index devel-kernel

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://lore.altlinux.org/org.altlinux.lists.devel-kernel


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git