Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Mike Frysinger <vapier@g.o>
Subject: Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Date: Mon, 5 Jan 2004 12:55:11 -0500
On Monday 05 January 2004 12:09, Tobias Weisserth wrote:
> there is a new kernel vulnerability in the mremap system call. This
> affects all kernels of the 2.2, 2,4 and 2.6 series with the exception of
> 2.4.24. There is some information on this at
> http://isec.pl/vulnerabilities/isec-0013-mremap.txt.

yes, we know, see Bug 37292

> together with that do_brk() bug this is already the second major
> exploitable bug in the gentoo-sources. Will there be a gentoo-sources
> ebuild in Portage with the Gentoo tweaks for the 2.4.24 kernel or is it
> better to migrate to 2.6 immediately?

all kernels in portage should already be patched against do_brk() ...
read the ChangeLog
-mike


--
gentoo-security@g.o mailing list

Replies:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
-- kerin
References:
new kernel vulnerability in 2.2, 2.4 and 2.6 series
-- Tobias Weisserth
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
new kernel vulnerability in 2.2, 2.4 and 2.6 series
Next by thread:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series
Previous by date:
new kernel vulnerability in 2.2, 2.4 and 2.6 series
Next by date:
Re: new kernel vulnerability in 2.2, 2.4 and 2.6 series


Updated Oct 31, 2011

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.