Linux root compromise, please upgrade your kernel

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MJason at <-
MDigital Wokan at ->
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Matt Alexander
Date:  
Subject: Linux root compromise, please upgrade your kernel
As a quick fix, remove the suid bit from /usr/bin/newgrp.

chmod -s /usr/bin/newgrp



On Sat, 20 Oct 2001, Jason wrote:

> Hey wait a minute, the newest 2.2 kernel on sunsite IS 2.2.19
>
> Splendid.
>
> > Matt Alexander wrote:
> > >
> > > Root compromise is possible in kernels 2.2.x (x <= 19) up through 2.4.y.
> > > (y <= 9).
> > >
> > > Here's more info:
> > >
> > > http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=221337&start=2001-10-15&end=2001-10-21
> > >
> > > If you've got a system with multiple users, please upgrade your kernel.
> > > ~M
>
>


This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Linux root compromise, please upgrade your kernelLinux root compromise, please upgrade your kernel->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)