[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Kernel Bug?

Subject: Re: [cobalt-users] Kernel Bug?
From: flash22@xxxxxxx
Date: Fri Oct 19 23:06:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Fri, 19 Oct 2001, Federico Voges wrote:
> 
> I don't think so. I'm a Caldera reseller and I've received the sec
> advisories dealing with this bugs and new kernerls for OL 2.x to 3.1.
> That is: kernels 2.2 and 2.4.

Ok, first, the ptrace issue does exist in the raq3/4 kernels, the qube and
raq2's are too old. The ptrace issue has been known for a while, the
slashdot posting was a claim it still worked after the patches//

The ptrace exploit also requires additional things on the machines, it
needs a SUID binary , and that binary has to be one which will execute
other binaries, 'su' will for example do this, however PAM breaks the
exploit be inserting another layer, so the SUID gained permissions are
lost before the exploit gets to use them. Cobalt, for the most part , has
been exceptionally carefull about SUID binaries, there are very few on
the machines....

More details: 
http://www.linuxsecurity.com/advisories/other_advisory-1643.html

gsh

References:
- Re: [cobalt-users] Kernel Bug?
  - From: Federico Voges

Prev by Date: [cobalt-users] OS Restore for RaQ3
Next by Date: [cobalt-users] RaQ4-All-Kernel-1.0.1.216C28III.pkg
Previous by thread: Re: [cobalt-users] Kernel Bug?
Next by thread: Re: [cobalt-users] Kernel Bug?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index