Hi, I just discovered http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=221337&start=2001-10-15&end=2001-10-21 thanks to /. (so I'm sure more of you are aware of it). I was just wondering if anyone can let me know how we discover when we are likely to see an update for the kernel on security.debian.org to patch this issue (their seems to be at least one potential patch available, though for the symlink exploit it does alter the spec of the system :-( If the fix has appeared in the last few minutes since I apt-get update && apt-get dist-upgrade d my box congrats guys and sorry to bother you :-)
With this bug receiving /. coverage and the exploit code available (as it should be, all in the open please) I think we need to ensure that Debian gets this covered asap before some MS lovers go writing code to exploit boxes just to prove that their boxes are as good as ours. Niall -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
