Mailing List Archive: Gentoo: Security

FYI: Suse warns of hole in Linux kernel

Index | Next | Previous | View Threaded

rpfc at mega

Oct 28, 2004, 1:26 PM

Post #1 of 9 (904 views)
Permalink

FYI: Suse warns of hole in Linux kernel

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Found this on OSNews:
http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html

What are your thoughts on this?

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBgVYBfLPhlaxNQk0RAtSTAJsE2Jjg2Hjsx832FQ9Qqhf/o0Dw7QCcDH6m
mYdOUQnxhal+CV4jeHb1ZWs=
=cmSV
-----END PGP SIGNATURE-----

--
gentoo-security [at] gentoo mailing list

outrage at gmx

Oct 28, 2004, 1:52 PM

Post #2 of 9 (874 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

The article doesn't really give a lot of information about what kind of flaw it
is. It just talks about a "packet". What kind of packet? What kind of bug?

With the information given it's pretty hard to judge on severity,

Cheers,

Ben

On 21:26 Thu 28 Oct , Rui Covelo wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
>
> Found this on OSNews:
> http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html
>
>
> What are your thoughts on this?
>
>
>
>
>
>
>
>
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.6 (GNU/Linux)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFBgVYBfLPhlaxNQk0RAtSTAJsE2Jjg2Hjsx832FQ9Qqhf/o0Dw7QCcDH6m
> mYdOUQnxhal+CV4jeHb1ZWs=
> =cmSV
> -----END PGP SIGNATURE-----
>
> --
> gentoo-security [at] gentoo mailing list

--

rpfc at mega

Oct 28, 2004, 1:54 PM

Post #3 of 9 (873 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sure! I was wondering if anyone knows more about this because I was
unable to find any other info.

Benjamin Martin wrote:
| The article doesn't really give a lot of information about what kind
of flaw it
| is. It just talks about a "packet". What kind of packet? What kind of bug?
|
| With the information given it's pretty hard to judge on severity,
|
| Cheers,
|
| Ben
|
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBgVxvfLPhlaxNQk0RAvc3AJ0e/PtiAI/OseEi01x13tqTBTf6fQCeJys5
um5YdJ0AFrBUeK7gN1+eMJ4=
=lEh2
-----END PGP SIGNATURE-----

--
gentoo-security [at] gentoo mailing list

g1gsw at g1gsw

Oct 28, 2004, 2:00 PM

Post #4 of 9 (872 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

There is another article I have found here:-

http://www.techworld.com/opsys/news/index.cfm?NewsID=2498

It says:-

The bug affects Suse Linux 9.1 and Suse Linux Enterprise Server (SLES) 9; Suse
Linux 9.2 isn't affected because the version of the kernel it uses, 2.6.8,
already contains a fix.

So it looks like anyone with kernel 2.6.8 and above is fine.

Regards

Colin

--
To mess up a Linux box, you need to work at it; to mess up your Windows box,
you just need to work on it.

miguel.filipe at gmail

Oct 29, 2004, 10:50 AM

Post #5 of 9 (873 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

I believe that this:
http://seclists.org/lists/bugtraq/2004/Oct/0223.html is related.
That link talks about a bug in the iptables "log" code.
It might be that, the remote root acording to that anouncement is on
S390 machines.

On Thu, 28 Oct 2004 22:52:30 +0200, Benjamin Martin <outrage [at] gmx> wrote:
> The article doesn't really give a lot of information about what kind of flaw it
> is. It just talks about a "packet". What kind of packet? What kind of bug?
>
> With the information given it's pretty hard to judge on severity,
>
> Cheers,
>
> Ben
>
> On 21:26 Thu 28 Oct , Rui Covelo wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> >
> >
> >
> > Found this on OSNews:
> > http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html
> >
> >
> > What are your thoughts on this?
> >
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.2.6 (GNU/Linux)
> > Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
> >
> > iD8DBQFBgVYBfLPhlaxNQk0RAtSTAJsE2Jjg2Hjsx832FQ9Qqhf/o0Dw7QCcDH6m
> > mYdOUQnxhal+CV4jeHb1ZWs=
> > =cmSV
> > -----END PGP SIGNATURE-----

--
Miguel Sousa Filipe

--
gentoo-security [at] gentoo mailing list

pjlv at mega

Oct 29, 2004, 2:26 PM

Post #6 of 9 (870 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

hi,

if it is a specific bug for suse linux distro and to S390 platform, i
suppose it doesn't qualify as a "kernel bug"...

won't you agree?

[]

Miguel Filipe wrote:
> I believe that this:
> http://seclists.org/lists/bugtraq/2004/Oct/0223.html is related.
> That link talks about a bug in the iptables "log" code.
> It might be that, the remote root acording to that anouncement is on
> S390 machines.
>
>
>
> On Thu, 28 Oct 2004 22:52:30 +0200, Benjamin Martin <outrage [at] gmx> wrote:
>
>>The article doesn't really give a lot of information about what kind of flaw it
>>is. It just talks about a "packet". What kind of packet? What kind of bug?
>>
>>With the information given it's pretty hard to judge on severity,
>>
>>Cheers,
>>
>>Ben
>>
>>On 21:26 Thu 28 Oct , Rui Covelo wrote:
>>
>
>
>
> Found this on OSNews:
> http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html
>
>
> What are your thoughts on this?
>

--
gentoo-security [at] gentoo mailing list

jaervosz at gentoo

Oct 29, 2004, 2:57 PM

Post #7 of 9 (872 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

On Friday 29 October 2004 23:26, Pedro Venda wrote:
> hi,
>
> if it is a specific bug for suse linux distro and to S390 platform, i
> suppose it doesn't qualify as a "kernel bug"...
>
> won't you agree?
It's not SUSE specific see http://bugs.gentoo.org/show_bug.cgi?id=68375

>
> []
>
> Miguel Filipe wrote:
> > I believe that this:
> > http://seclists.org/lists/bugtraq/2004/Oct/0223.html is related.
> > That link talks about a bug in the iptables "log" code.
> > It might be that, the remote root acording to that anouncement is on
> > S390 machines.
> >
> > On Thu, 28 Oct 2004 22:52:30 +0200, Benjamin Martin <outrage [at] gmx>
wrote:
> >>The article doesn't really give a lot of information about what kind of
> >> flaw it is. It just talks about a "packet". What kind of packet? What
> >> kind of bug?
> >>
> >>With the information given it's pretty hard to judge on severity,
> >>
> >>Cheers,
> >>
> >>Ben
> >>
> >>On 21:26 Thu 28 Oct , Rui Covelo wrote:
> >
> > Found this on OSNews:
> > http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html
> >
> >
> > What are your thoughts on this?
>
> --
> gentoo-security [at] gentoo mailing list

--
Sune Kloppenborg Jeppesen (Jaervosz)
Operational Manager
Gentoo Linux Security Team

outrage at gmx

Oct 29, 2004, 4:33 PM

Post #8 of 9 (873 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

Anyhow, it is fixed in recent kernel versions and taking into account how easy
it is to upgrade kernels on a gentoo box (compared to SUSE) it isn't much of
a problem, i think. It's an admin's task to check for these things and take
the necessary steps (in this case upgrading the kernel).

Cheers,

Ben

On 23:57 Fri 29 Oct , Sune Kloppenborg Jeppesen wrote:
> On Friday 29 October 2004 23:26, Pedro Venda wrote:
> > hi,
> >
> > if it is a specific bug for suse linux distro and to S390 platform, i
> > suppose it doesn't qualify as a "kernel bug"...
> >
> > won't you agree?
> It's not SUSE specific see http://bugs.gentoo.org/show_bug.cgi?id=68375
>
> >
> > []
> >
> > Miguel Filipe wrote:
> > > I believe that this:
> > > http://seclists.org/lists/bugtraq/2004/Oct/0223.html is related.
> > > That link talks about a bug in the iptables "log" code.
> > > It might be that, the remote root acording to that anouncement is on
> > > S390 machines.
> > >
> > > On Thu, 28 Oct 2004 22:52:30 +0200, Benjamin Martin <outrage [at] gmx>
> wrote:
> > >>The article doesn't really give a lot of information about what kind of
> > >> flaw it is. It just talks about a "packet". What kind of packet? What
> > >> kind of bug?
> > >>
> > >>With the information given it's pretty hard to judge on severity,
> > >>
> > >>Cheers,
> > >>
> > >>Ben
> > >>
> > >>On 21:26 Thu 28 Oct , Rui Covelo wrote:
> > >
> > > Found this on OSNews:
> > > http://www.infoworld.com/article/04/10/27/HNsusewarns_1.html
> > >
> > >
> > > What are your thoughts on this?
> >
> > --
> > gentoo-security [at] gentoo mailing list
>
> --
> Sune Kloppenborg Jeppesen (Jaervosz)
> Operational Manager
> Gentoo Linux Security Team

--

pjlv at mega

Oct 30, 2004, 5:17 AM

Post #9 of 9 (871 views)
Permalink

Re: FYI: Suse warns of hole in Linux kernel [In reply to]

Benjamin Martin wrote:
> Anyhow, it is fixed in recent kernel versions and taking into account how easy
> it is to upgrade kernels on a gentoo box (compared to SUSE) it isn't much of
> a problem, i think. It's an admin's task to check for these things and take
> the necessary steps (in this case upgrading the kernel).

which, according to the current kernel development policy may not be
what you really want.

my home server does not boot everytime with 2.6.8/2.6.9 kernels
(unfortunately i have to shut it down very often) and the mppe vpn works
only once per boot.

don't misjudge me, i have some experience, and believe me, i have tried
to solve all these problems. the vpn was solvable but the boot problem
rendered me with no choice but to change to an older working kernel: 2.6.6.

regards,
pedro venda.

--
gentoo-security [at] gentoo mailing list

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads