About this list Date view Thread view Subject view Author view Attachment view

From: Ondøej Surý (sury.ondrej_at_globe.cz)
Date: Fri 06 Feb 2004 - 16:58:31 GMT


Hi,

BEWARE this patch brokes Debian!

dpkg does:

mkdir("blah/blah.dpkg-new", 0)
chmod("blah/blah.dpkg-new", 0755)

And chmod obviously fails. Proper fix should probably check exact inode
of /vservers/ dir and protect only this one particular inode.

O.

On Fri, 2004-02-06 at 16:43, Herbert Poetzl wrote:
> On Fri, Feb 06, 2004 at 09:24:57AM -0600, Tom Walsh wrote:
> >
> > > as promised, the security bugfix release (1.25) for
> > > the linux-vserver stable branch is now available at
> > >
> >
> > Herbert,
> >
> > Does this mean that this exploit does not effect the devel tree (1.3x)?
> > Or is it that you just haven't had the time to apply the patch to that
> > tree?
>
> latter, or, to be precise, the fix (patch) applies
> to both stable and devel, devel will have it included
> in the next release ...
>
> HTH,
> Herbert
>
> > Tom Walsh
> > Network Administrator
> > http://www.ala.net/
> >
> >
> > _______________________________________________
> > Vserver mailing list
> > Vserver_at_list.linux-vserver.org
> > http://list.linux-vserver.org/mailman/listinfo/vserver
> _______________________________________________
> Vserver mailing list
> Vserver_at_list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver

-- 
Ondřej Surý <sury.ondrej_at_globe.cz>
Globe Internet s.r.o.

_______________________________________________ Vserver mailing list Vserver_at_list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver


About this list Date view Thread view Subject view Author view Attachment view
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Fri 06 Feb 2004 - 16:59:13 GMT by hypermail 2.1.3