Author: micah Date: 2005-02-18 00:35:13 +0100 (Fri, 18 Feb 2005) New Revision: 436 Modified: sarge-checks/CAN/list Log: resolved 1337 kernel issue (another fix!) Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-02-17 23:31:13 UTC (rev 435) +++ sarge-checks/CAN/list 2005-02-17 23:35:13 UTC (rev 436) @@ -1373,10 +1373,11 @@ CAN-2004-1338 (The triggers in Oracle 9i and 10g allow local users to gain privileges ...) NOTE: not-for-us (oracle) CAN-2004-1337 (The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 ...) - NOTE: <dilinger> joeyh: we''re mostly not vulnerable, because the module is generally loaded from the initrd (or very early on at some point) NOTE: <joshk> i thought we had it <joshk> but i think there''s a reason we don''t <joshk> and i need to ask dilinger about it - NOTE: micah is waiting for joshk to get back to him on this - NOTE: apparently it only affects 2.6 + TODO: 2.6.9 fixed? waiting on joshk + - kernel-source-2.6.8 2.6.8-14 + - kernel-source-2.6.9 2.6.9-6 + - kernel-source-2.6.10 2.6.10-1 CAN-2004-1336 (The xdvizilla script in tetex-bin 2.0.2 creates temporary files with ...) - tetex-bin 2.0.2-25 CAN-2004-1335 (Memory leak in the ip_options_get function in the Linux kernel before ...)