If I understood well, at least two of the recently fixed bugs (CVE-2006-1242 and CVE-2006-1524) are present in the Linux kernel since 2.4, but I haven't found the flurry of security advisories and patches from distributors to fix these problems (except Fedora and Trustix patching their kernels for the second bug). Am I missing something? Are these bugs still in the latest kernels of the various distributions or they are not exploitable because they depend on a configuration option that is turned off in those kernels?
Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds