Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  community  lists  wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Order Openwall GNU/*/Linux 2.0 on a CD with delivery worldwide
[<prev] [next>] [month] [year] [list] 
Date: Sat, 10 Feb 2001 01:51:48 +0300
From: Solar Designer <solar@...nwall.com>
To: announce@...ts.openwall.com
Subject: linux-2.2.18-ow4 and 2.0.39-ow2

Hi,

Two serious Linux kernel vulnerabilities have just been announced
(information leak in sysctl(2) on Linux 2.2, and a race condition in
execve(2) on both 2.2 and 2.0).  Both can result in a local root
compromise.

I've released updated versions of the kernel patches which include
fixes for these vulnerabilities.  They can be downloaded at the usual
location:

	http://www.openwall.com/linux/

-- 
/sd

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux