Re: Confirm? New local root exploits

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, Jan 07, 2005 at 05:43:29PM -0500, Will Backman wrote:
> Anyone tried the recently announced local root exploits against Fedora
> Core?  Do the stack protections and other stuff protect the Fedora
> Kernel?

Not in this case

> I've manage a university shell server with many many student accounts.
> Scared....

Its fixed in 2.6.10-ac6 along with the following
	-	DoS/oops in setsid (user triggerable)
	-	Coda unverified user data (only if using Coda)
	-	XFS unverified user data (only if using XFS)
	-	Bridge ioctl (only if using bridge and already net_admin)
	-	Rose ioctl (only if using rose and already net_admin)
	-	SDLA firmware ioctls (only if net_admin and using sdla)



[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]