On Mon, Mar 19, 2001 at 07:25:40PM -0600, David Efflandt wrote:
>
> 2.2.x kernels before 2.2.16 have a potential security flaw and should be
> updated anyway. Are the powers that be aware of that? I don't know where
> to find the original advisory, but an example for RedHat is
> http://www.linuxsecurity.com/advisories/redhat_advisory-502.html
Actually anything before 2.2.19-pre9 has a _known_ security flaw and
should be updated. If you are using stock 2.2.18 on a multiuser machine
with untrusted users, _please_ upgrade to the latest 2.2.19-pre version,
or use a patch that I have around here somewhere that fixes the problem.
See http://marc.theaimsgroup.com/?l=bugtraq&m=98176597614833&w=2 for
more info on this problem
Most of the distro companies came out with updated kernel packages when
this problem surfaced (Caldera, RedHat, Immunix, but not Mandrake, and
don't remember about Debian) so if you have the latest kernel from them,
you should be fine.
greg k-h
--
greg@(kroah|wirex).com
_______________________________________________
[EMAIL PROTECTED]
To unsubscribe, use the last form field at:
http://lists.sourceforge.net/lists/listinfo/linux-usb-users
