Merit Network
 Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives
Network Security
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical FWD: GeeK: more proof...

  • From: Paul Howell
  • Date: Thu Jun 08 06:48:32 2000 
------- Forwarded Message

Date: Thu, 8 Jun 2000 01:23:27 -0400 (EDT)
From: Dug Song <dugsong@monkey.org>
To: backrow@citi.umich.edu
Cc: geeks@monkey.org
Subject: GeeK: more proof...
Message-ID: <Pine.BSO.4.20.0006080120530.3916-100000@naughty.monkey.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: geeks-owner@monkey.org
Precedence: bulk

this is amazingly bad.

http://sendmail.net/?feed=000607linuxbug

   A serious bug has been discovered in the Linux kernel that can be used
   by local users to gain root access. The problem, a vulnerability in
   the Linux kernel capability model, exists in kernel versions up to and
   including version 2.2.15. According to Alan Cox, a key member of the
   Linux developer community, "It will affect programs that drop setuid
   state and rely on losing saved setuid, even those that check that the
   setuid call succeeded."

- -d.

- ---
http://www.monkey.org/~dugsong/




------- End of Forwarded Message


Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.