Security issues in 2.4.9 and beyond

Gianni Tedesco (gianni@ecsc.co.uk)
01 Dec 2001 20:22:06 +0000


Hi guys,

I am putting together a database of errata for Linux 2.4.x. It will have
individual patches for each major bug (at the moment thats just security
flaws) and a mega-patch for each version. I am starting on kernel 2.4.9
for no other reason as this is what I currently use...

This is what I have so far for 2.4.9:
1. Netfilter mac address matching bug
2. ptrace race condition
3. symlink DoS
4. syncookie/netfilter bug
5. Netfilter FTP conntrack bug (can someone confirm this ??)

I have patches only for item 1 at the moment. I can rip out the patch
for 3 and possibly 4. If there is interest I will post a URL to them
here.

Does anyone here know of any other issues in this kernel (or newer
kernels) or have access to any of the patches I am missing? You can mail
patches to me directly if they are big or you feel they are irrelivant
to the list.

Thanks

-- 
// Gianni Tedesco <gianni@ecsc.co.uk>
80% of all email is a figment of procmails imagination.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/