In case anyone's heard of the 'vmsplice' vulnerability, it does *not* affect s390x. It does affect x86/x86_64, so be sure to update your 'other' hardware. Details follow:
--------- A new system call named vmsplice() was introduced in the 2.6.17 release of the Linux kernel. On Saturday a public exploit was released in vmsplice (vmsplice_to_pipe function) that can allow a local unprivileged user to gain root on Linux 2.6.17+ kernels. The vulnerability affects only Red Hat Enterprise Linux 5, where the exploit works without modification on x86 architectures. *NOTE* This exploit is local only, allowing for the possibility that an existing local user could gain root privileges. Updated packages are now available on Red Hat Network which correct this vulnerability and block the exploit. https://rhn.redhat.com/errata/RHSA-2008-0129.html -- Brad Hinson <[EMAIL PROTECTED]> Sr. Support Engineer Lead, System z Red Hat, Inc. (919) 754-4198 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
