[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Kernel 2.2.14



On Mon, 17 Jan 2000, Nir Simionovich (Rin Solo) wrote:

>   Did any of you install the 2.2.14 kernel ? is there a security update in
> it, cause I've been trying to get info on the kernel, and found absolutely
> none.

from: http://www.linux.org.uk/VERSION/relnotes.2214.html

Security Notes
2.2.14 fixes several local security issues. Most of these were not
publically known and exploited. Nevertheless anyone with untrusted local
users should upgrade.

Security Updates

IP Header 
    Certain packet constructs could allow the kernel to read data beyond
    packet end. We don't believe this is exploitable in any way. It is
    fixed as a matter of correctness. 
Traffic Shaper 
    Any user could reconfigure the traffic shaper device ("shaper" or
    "shaper0"). This has been cured. 

-- 
Ira Abramov ;  whois:IA58  ;  www.scso.com ;  all around Linux enthusiast
"It's God.  No, not Richard Stallman, or Linus Torvalds, but God."
(By Matt Welsh)


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il