Mailing List
Home
Forum Home
Linux - General Red Hat Linux discussion list
Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)
Installation - Getting started with Red Hat Linux
Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)
Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)
Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)
Apache Web Server
Oracle database, Microsoft SQL server ...
Subjects
application/x mplayer2 plugin
RPM error: db4 error(16) from dbenv >remove: Device or resource
   busy
Command stream end of file while reading
X Windows problem (xauth)
Upgrading openoffice 1 1 rpm
FTP: connection refused
FTP: connection refused
mount: /dev/cdrom: is not a valid block device
Dell Precision 650, RedHat 9, no sound
how to trace the cause resulting in the crash of bind server
Virus on the list
UNINSTALL RPM MYSQL
usb pen drives: mounting as a user
broadcom network interface
make mrproper
sendmail configuration on redhat
Couldn 't open PID file /var/run/named/named pid Permission denied
Promise 378 controller
kernel 2 6 and /dev/sound/mixer not found
Problem using up2date
mrtg step by step howto/configuration for a newbie?
Compiling and Installing Kernel 2 6
Can 't locate module ppp0, can 't locate module ppp compress 21
HOW I CAN MAKE BOOTABLE FLOPPY DISKET
Lotus Notes under Wine
/etc/security/limits conf question
Intel E/1000 driver
Command stream end of file while reading
rpm database corrupt
qla2300 modules
 
Search:  
Power your search with and, or, +, -, or "some phrase" operators.
Re: RHEL Kernel vulnerable to the recent uselib() privilege
   escalation vulnera

Re: RHEL Kernel vulnerable to the recent uselib() privilege
   escalation vulnera

2005-01-11       - By Arjan van de Ven

 Back
Reply:     1     2     3  

On Tue, 2005-01-11 at 08:15 -0600, Lee Whatley, Contractor wrote:
> Hello all,
>
> I read in a discussion somewhere that the recent uselib() privilege
> escalation kernel vulnerability doesn't affect RHEL v3 kernels.

where did you hear that?

>   Can
> someone on the list help me verify that so that I can assure my
> management and security folks that we are safe?

I have not looked in at this issue in detail, but I don't know of any
reason why RHEL3 kernels would not have this bug (since both 2.4 and 2.6
have it, it won't have been fixed by something we backported). I think
you're best off asking either RH support about this, or
security@(protected) they can get the real official answer.

If you hear anything back, please let us know the result


--
Taroon-list mailing list
Taroon-list@(protected)
http://www.redhat.com/mailman/listinfo/taroon-list

Earn $52 per hosting referral at Lunarpages.