some input from the kernel maintainers.
Someone with access to the console have several attack vectors
available.
True, but this one is trivial to exploit and is also fairly easy to prevent so
why stick with it?
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG
severity 550534 grave
thanks
Hi,
I have similar issues using Intel Corporation PRO/Wireless
4965 AG or AGN [Kedron] Network Connection (rev 61).
From dmesg:
[ 105.305807] iwlagn :03:00.0: firmware: requesting iwlwifi-4965-2.ucode
[ 105.390624] iwlagn :03:00.0: loaded firmware version
with this, no other version included
the vulnerable code.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpiFLvSwMX01.pgp
Description: PGP signature
://security-tracker.debian.net/tracker/CVE-2008-4579
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4580
http://security-tracker.debian.net/tracker/CVE-2008-4580
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text
sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1673
http://security-tracker.debian.net/tracker/CVE-2008-1673
--
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security
# Automatically generated email from bts, devscripts version 2.10.29
# args retitled wrong bug
retitle 485944 linux-2.6: CVE-2008-1673 problem when validating length values
during decoding of ASN.1 BER data
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble?
-2148
--
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgp05JUQyrSDx.pgp
Description: PGP signature
://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3843
Kind regards
Nico
--
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpn3YECGy5xd.pgp
Description: PGP signature
in your changelog entry.
You can find a fix on:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ccec6e2c4a74adf76ed4e2478091a311b1806212
For further information:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4571
Kind regards
Nico
--
Nico Golde - http
?name=CVE-2007-4308
Kind regards
Nico
--
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpM0xqkgkCOK.pgp
Description: PGP signature
the CVE id in the changelog.
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4849
Kind regards
Nico
--
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpl6CgpfxSYD.pgp
Description: PGP signature
-image-2.6.15-1-686/preinst/failed-to-move-modules-2.6.15-1-686:
linux-image-2.6.15-1-686/preinst/elilo-initrd-2.6.15-1-686: true
linux-image-2.6.15-1-686/postinst/old-system-map-link-2.6.15-1-686: true
--
Nico Golde - JAB: [EMAIL PROTECTED] | GPG: 0x73647CFF
http://www.ngolde.de | http
Hi,
why the debian kernel-packages don't provide the config file
via /proc?
Please CC me, I am not on this list.
Regards Nico
--
Nico Golde - [EMAIL PROTECTED] | GPG: 1024D/73647CFF
http://www.ngolde.de | http://www.muttng.org | http://grml.org
VIM has two modes - the one in which it beeps
Hello Matus,
* Matus UHLAR - fantomas [EMAIL PROTECTED] [2005-05-06 17:45]:
On 06.05 10:42, Nico Golde wrote:
why the debian kernel-packages don't provide the config file
via /proc?
For 2.4 kernels, it requires patch that is not in debian distribution.
Shure.
Sorry, I forgot to mention
14 matches
Mail list logo