For those of you running Slackware. The ChangeLog for Slackware-current shows that there are now updated kernel packages, that fix this problem, available.
Mon Feb 11 17:47:58 CST 2008 a/kernel-generic-184.108.40.206-i486-1.tgz: Upgraded to Linux 220.127.116.11 uniprocessor generic.s (requires initrd) kernel. All of these kernel upgrades fix yesterday's local root exploit. The kernel headers did not change, so a glibc rebuild is not required. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0010 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0163 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0600 (* Security fix *) If you use lilo, don't forget to run it again after the upgrade....
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds