Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: kerin@...
Subject: Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Date: Mon, 5 Jan 2004 18:14:58 -0000 (GMT)
On Mon, 5 Jan 2004 12:55:11 -0500
Mike Frysinger <vapier@g.o> wrote:

> all kernels in portage should already be patched against do_brk() ...
> read the ChangeLog

In fact, I believe the redhat-sources are still vulnerable. The
explanation I got was that they're "not maintained". My opinion is quite
simply that they should be patched or scrubbed - but not left as they are.

As far as I know, they are the only sources that have been left in this
condition (last update 03 Oct 2003).

--Kerin Millar

--
gentoo-security@g.o mailing list

References:
new kernel vulnerability in 2.2, 2.4 and 2.6 series
-- Tobias Weisserth
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
-- Mike Frysinger
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Next by thread:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Previous by date:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Next by date:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.