* [d-kernel] RHSA-2003:238-01
@ 2003-07-23 3:03 Alexey Borovskoy
2003-07-23 5:29 ` Ed V. Bartosh
2003-07-24 7:36 ` Ed V. Bartosh
0 siblings, 2 replies; 5+ messages in thread
From: Alexey Borovskoy @ 2003-07-23 3:03 UTC (permalink / raw)
To: devel-kernel
Добрый день.
Updated 2.4 kernel fixes vulnerabilities
http://www.security.nnov.ru/search/document.asp?docid=4884
Меня вот эти штуковины беспокоят:
CAN-2003-0462: Paul Starzetz discovered a file read race
condition existing in the execve() system call, which could
cause a local crash.
CAN-2003-0464: A recent change in the RPC code set the reuse flag
on newly-created sockets. Olaf Kirch noticed that his could
allow normal users to bind to UDP ports used for services such
as nfsd.
CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding
table could be spoofed by sending forged packets with bogus
source addresses the same as the local host.
Что думает сообщество? Или только после Феста5?
--
Алексей.
JID:alb@jabber.ru
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [d-kernel] RHSA-2003:238-01
2003-07-23 3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
@ 2003-07-23 5:29 ` Ed V. Bartosh
2003-07-24 7:36 ` Ed V. Bartosh
1 sibling, 0 replies; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-23 5:29 UTC (permalink / raw)
To: alexey_borovskoy; +Cc: ALT Linux kernel packages development
>>>>> "AB" == Alexey Borovskoy writes:
AB> Updated 2.4 kernel fixes vulnerabilities
AB> http://www.security.nnov.ru/search/document.asp?docid=4884
AB> Меня вот эти штуковины беспокоят:
AB> CAN-2003-0462: Paul Starzetz discovered a file read race
AB> condition existing in the execve() system call, which could
AB> cause a local crash.
AB> CAN-2003-0464: A recent change in the RPC code set the reuse
AB> flag on newly-created sockets. Olaf Kirch noticed that his
AB> could allow normal users to bind to UDP ports used for services
AB> such as nfsd.
AB> CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding
AB> table could be spoofed by sending forged packets with bogus
AB> source addresses the same as the local host.
AB> Что думает сообщество? Или только после Феста5?
Я поэтому и запостил, думал, что найдутся добровольцы, такие вещи
лучше оперативно делать.
А несчет феста - я не еду, поэтому планирую этим заняться после
разборок с lm_sensors. Опять же, если чем-нибудь еще не загрузят :)
Плохо, что RH отдельно эти вещи не обозначает в спеке, не кладет в
отдельные патчи, искать неудобно.
--
Best regards,
Ed V. Bartosh
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [d-kernel] RHSA-2003:238-01
2003-07-23 3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
2003-07-23 5:29 ` Ed V. Bartosh
@ 2003-07-24 7:36 ` Ed V. Bartosh
2003-07-24 7:43 ` Ed V. Bartosh
1 sibling, 1 reply; 5+ messages in thread
From: Ed V. Bartosh @ 2003-07-24 7:36 UTC (permalink / raw)
To: alexey_borovskoy; +Cc: ALT Linux kernel packages development
AB> Меня вот эти штуковины беспокоят:
AB> CAN-2003-0462: Paul Starzetz discovered a file read race
AB> condition existing in the execve() system call, which could
AB> cause a local crash.
...
RH патчи выложены сдесь:
http://edbartosh.at.tut.by/kernel.rh9-2.4.20-19.9.tar.bz2
PS: пишу и на список в надежде, что найдутся желающие посмотреть и на
другие темы, не только секурити.
--
Best regards,
Ed V. Bartosh
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2003-07-24 8:13 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-07-23 3:03 [d-kernel] RHSA-2003:238-01 Alexey Borovskoy
2003-07-23 5:29 ` Ed V. Bartosh
2003-07-24 7:36 ` Ed V. Bartosh
2003-07-24 7:43 ` Ed V. Bartosh
2003-07-24 8:13 ` Ed V. Bartosh
ALT Linux kernel packages development
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/devel-kernel/0 devel-kernel/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 devel-kernel devel-kernel/ http://lore.altlinux.org/devel-kernel \
devel-kernel@altlinux.org devel-kernel@altlinux.ru devel-kernel@altlinux.com
public-inbox-index devel-kernel
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.devel-kernel
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git