Sponsored link
Vyatta –
Linux & Open Source
Alternative to Cisco –
Advanced Routing,
Firewall, VPN, QoS..
Free Download ->
| |||||||||||
Debian GNU/Linux 4.0 updatedDebian GNU/Linux 4.0 updatedPosted Feb 19, 2008 7:25 UTC (Tue) by aba (subscriber, #24118)In reply to: Debian GNU/Linux 4.0 updated by jake Parent article: Debian GNU/Linux 4.0 updated
I agree, it should be listed in the list of DSAs. I'll check why the DSA is not in the list of DSAs, but the fixed kernel is there definitly.
(Log in to post comments)
Debian GNU/Linux 4.0 updated Posted Feb 19, 2008 18:36 UTC (Tue) by jake (editor, #205) [Link] > but the fixed kernel is there definitly. I am afraid it is not. I installed 4.0r3 and built the exploit and it worked fine. uname tells me the following: Linux debian 2.6.18-6-686 The new kernel is _available_ of course, but not distributed as part of 4.0r3. jake
Debian GNU/Linux 4.0 updated Posted Feb 21, 2008 12:54 UTC (Thu) by mbanck (subscriber, #9035) [Link] > The new kernel is _available_ of course, but not distributed as part of 4.0r3. According to the person who mastered the CDs, the new kernel package should be on the CDs. When/how did you install 4.0r3? Which CD version (businesscard,netinst,full,dvd)? What does "dpkg -l linux-image-2.6.18-6-686 | tail -1" return as version, in case you still have that installation available. Somebody should check the security advisory as well I guess. Thanks, Michael
Debian GNU/Linux 4.0 updated Posted Feb 21, 2008 14:28 UTC (Thu) by jake (editor, #205) [Link] > According to the person who mastered the CDs, the new kernel package should be on the CDs. And it appears that it is. I re-ran my tests (with much less cockpit error) and the exploit does not work. So, all that remains is why the DSA didn't get listed ... jake
|
|||||||||||