Re: [Hampshire] Linux kernel 2.6.17-2.6.24 root exploit

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MJohn Hunt at <-
M 
Author: James Ettle
Date:  
To: johnrhunt, Hampshire LUG Discussion List
CC: 
Subject: Re: [Hampshire] Linux kernel 2.6.17-2.6.24 root exploit

Reply to this message
gpg: failed to create temporary file '/var/lib/lurker/.#lk0x5804a100.hantslug.org.uk.10056': Permission denied
gpg: keyblock resource '/var/lib/lurker/pubring.gpg': Permission denied
gpg: Signature made Sun Feb 10 21:16:27 2008 GMT
gpg: using DSA key 2FF22CF403F94B5D
gpg: Can't check signature: No public key
On Mon, 2008-02-11 at 07:20 +1100, John Hunt wrote:
> Yeah, this is indeed a scary bug! It worked very easily on my laptop
> which is a 2.6.22-14 Ubuntu kernel. I'd advise everyone with multiple
> users on their systems to take it very seriously.

And check everything else is up-to-date. It looks like all it'd take is
one program with a working and undefended code-injection
vulnerability...

James 

-- 
James Ettle                                        jhe@???
Southampton High Energy Physics
School of Physics and Astronomy
University of Southampton, SO17 1BJ
PGP key ID: 03F94B5D
-----------------------------------------------------------------------


This message was posted to the following mailing lists:
Hampshire LUG
Mailing List Info | Nearby Messages		<-Re: [Hampshire] ndiswrapperRe: [Hampshire] maximum memory use for a process->
Hampshire LUG Mailing List Archive administrated by WebmasterLurker (version 2.3)