http://lwn.net/Articles/136516/ This is a special feed containing comments posted to the individual LWN article titled "Responding to the kernel ELF vulnerability". hourly 2 http://lwn.net/Articles/137158/rss 2005-05-23T20:30:45+00:00 gswoods Today the Fedora project released a kernel update that claims to fix CAN-2005-1263, the ELF vulnerability.<br> http://lwn.net/Articles/136892/rss 2005-05-20T22:58:54+00:00 giraffedata <blockquote> That will cause the strnlen_user() function to page fault at the first attempt to count argument lengths. </blockquote> <p> So? How does that get you to <blockquote> could allow a local user to use a manipulated binary to gain elevated privileges. </blockquote> ? http://lwn.net/Articles/136645/rss 2005-05-19T10:29:04+00:00 NightMonkey And for Gentoo's 2.6 series: <a href="http://dev.gentoo.org/~dsd/gentoo-dev-sources/releases.htm">http://dev.gentoo.org/~dsd/gentoo-dev-sources/releases.htm</a><br> (See 2.6.11 patchset, release 12)<br> <p> Of course, 2.6 isn't vulnerable, as seen from gregkh's comment... ;)<br> <p> Can't seem to find a GLSA to go with this release, but perhaps I need to look harder?<br> http://lwn.net/Articles/136627/rss 2005-05-19T07:22:20+00:00 jhs I actually specifically clicked on the comments just to post a similar message about the LWN content. So I guess I will put it here. The LWN kernel section is excellent.<br> http://lwn.net/Articles/136622/rss 2005-05-19T06:59:47+00:00 komarek Comments and content like this from gregkh, are why I pay for and read LWN. How many slashdot posts would I have to read to get the same information, with the same confidence? Thanks corbet and gregkh for keep us all in-the-know.<br> http://lwn.net/Articles/136620/rss 2005-05-19T06:41:47+00:00 barryn 2.6.9-10, available at:<br> <a href="http://people.redhat.com/davej/kernels/RHEL4/">http://people.redhat.com/davej/kernels/RHEL4/</a><br> http://lwn.net/Articles/136614/rss 2005-05-19T06:13:58+00:00 gregkh The main reason there have not been any updates, is that there really isn't<br> a problem for the 2.6 kernel. The original author has admited this finally,<br> no one was ever able to reproduce it on a 2.6 kernel. The only reason I<br> released a kernel update, was at the time, we thought there was an <br> off-chance that there was a problem. However in further testing, it has not<br> been the case.<br> <p> But the patch was a good one to have, to prevent any other types of this<br> kind of error in that same area, if some other attack vector like the<br> reported one were developed.<br> http://lwn.net/Articles/136610/rss 2005-05-19T04:18:08+00:00 gte223j You could always mount /home as noexec and the same goes for /tmp ....... system binaries only:-0<br> http://lwn.net/Articles/136603/rss 2005-05-19T02:35:41+00:00 mattdm There is an update for FC3 in the "testing" area which covers this.<br>