Re: RHEL Kernel vulnerable to the recent uselib() <br> privilege escalation vulnera

Mailing List

Home

Forum Home

Linux - General Red Hat Linux discussion list

Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)

Installation - Getting started with Red Hat Linux

Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)

Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)

Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)

Apache Web Server

Oracle database, Microsoft SQL server ...

Subjects

•	application/x mplayer2 plugin
•	RPM error: db4 error(16) from dbenv >remove: Device or resource busy
•	Command stream end of file while reading
•	X Windows problem (xauth)
•	Upgrading openoffice 1 1 rpm
•	FTP: connection refused
•	FTP: connection refused
•	mount: /dev/cdrom: is not a valid block device
•	Dell Precision 650, RedHat 9, no sound
•	how to trace the cause resulting in the crash of bind server
•	Virus on the list
•	UNINSTALL RPM MYSQL
•	usb pen drives: mounting as a user
•	broadcom network interface
•	make mrproper
•	sendmail configuration on redhat
•	Couldn 't open PID file /var/run/named/named pid Permission denied
•	Promise 378 controller
•	kernel 2 6 and /dev/sound/mixer not found
•	Problem using up2date
•	mrtg step by step howto/configuration for a newbie?
•	Compiling and Installing Kernel 2 6
•	Can 't locate module ppp0, can 't locate module ppp compress 21
•	HOW I CAN MAKE BOOTABLE FLOPPY DISKET
•	Lotus Notes under Wine
•	/etc/security/limits conf question
•	Intel E/1000 driver
•	Command stream end of file while reading
•	rpm database corrupt
•	qla2300 modules

Re: RHEL Kernel vulnerable to the recent uselib()
privilege escalation vulnera

2005-01-11 - By Garrick Staples

Back

Reply: 1 2

On Tue, Jan 11, 2005 at 05:02:38PM +0100, Arjan van de Ven alleged:
> On Tue, 2005-01-11 at 09:30 -0600, Ed Wilts wrote:
> > On Tue, Jan 11, 2005 at 03:28:34PM +0100, Arjan van de Ven wrote:
> > > On Tue, 2005-01-11 at 08:15 -0600, Lee Whatley, Contractor wrote:
> > > > I read in a discussion somewhere that the recent uselib() privilege
> > > > escalation kernel vulnerability doesn't affect RHEL v3 kernels.
> > >
> > > where did you hear that?
> >
> > A quick Google search came up with this link describing the
> > vulernability:
> > http://isec.pl/vulnerabilities/isec-0021-uselib.txt
> >
>
> I know the vulnerability; was more wondering where the "does not affect
> RHEL" came from...

I think I've seen a few posts on kernerltrap or something to this effect. And
trying it myself, I've not been able to get the published exploit to work on
rhel3.

--
Garrick Staples, Linux/HPCC Administrator
University of Southern California

--
Taroon-list mailing list
Taroon-list@(protected)
http://www.redhat.com/mailman/listinfo/taroon-list

Earn $52 per hosting referral at Lunarpages.

Re: RHEL Kernel vulnerable to the recent uselib() privilege escalation vulnera

Re: RHEL Kernel vulnerable to the recent uselib()
privilege escalation vulnera