LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 03-08-2004, 03:48 AM   #1
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 69
Yet another mremap critical flaw?


I'm really having trouble telling them all apart, now. Is this another brand new flaw or the same as some previous alert? The date says March 1 so I'm inclined to think this one has not been reported on LQ, yet.
 
Old 03-08-2004, 08:29 AM   #2
jeremy
root
 
Registered: Jun 2000
Distribution: Debian, Red Hat, Slackware, Fedora, Ubuntu
Posts: 10,170

Rep: Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585Reputation: 2585
From reading it, it *looks* like it was the second already released one. I think the date may have been updated when the advisory was updated to include POC code.

--jeremy
 
Old 03-08-2004, 11:05 AM   #3
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Original Poster
Rep: Reputation: 69
Ahh, so hard to tell them apart these days
 
Old 03-08-2004, 12:04 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,529
Blog Entries: 51

Rep: Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601
I'm really having trouble telling them all apart, now. Is this another brand new flaw or the same as some previous alert?

Easy if it's assigned a CVE CAN number, just check out the entry.
CAN-2004-0077 was reported on 2004/02/18.
It is the second mremap one.
 
Old 03-08-2004, 12:09 PM   #5
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Original Poster
Rep: Reputation: 69
Oops, you're right and I totally overlooked the CVE CAN. That'll teach me to read advisories at 2AM.
 
Old 03-08-2004, 01:31 PM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,529
Blog Entries: 51

Rep: Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601Reputation: 2601
That'll teach me to read advisories at 2AM.
Ah, well, everyone his own choice of bedside mags :-]
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
firefox 1.0.6 - critical security flaw slackhack Linux - Security 3 09-23-2005 01:13 AM
When will the mremap() kernel bug get patched? KingofBLASH Slackware 4 03-08-2004 05:53 PM
Second mremap critical bug zuessh Linux - Security 19 02-24-2004 06:24 PM
should I be worried about the Second mremap critical bug? Mandrake 9.2 user Fear58 Linux - Security 3 02-21-2004 12:42 PM
a flaw is just a flaw jamaso General 1 03-25-2003 06:45 AM


All times are GMT -5. The time now is 08:34 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration