From: Floris 'Tamama' van Gog (floris_at_vangog.net)
Date: Fri 06 Feb 2004 - 00:18:23 GMT

• Previous message: Herbert Poetzl: "[Vserver] [Release] Stable vs1.25 Security Update"
• In reply to: Herbert Poetzl: "[Vserver] [Release] Stable vs1.25 Security Update"
• Next in thread: Tom Walsh: "RE: [Vserver] [Release] Stable vs1.25 Security Update"

Guess this is a good time to upgrade from 1.22...

:)

Herbert Poetzl wrote:
> Hello Folks!
>
> as promised, the security bugfix release (1.25) for
> the linux-vserver stable branch is now available at
>
> http://www.13thfloor.at/vserver/s_release/v1.25/
>
> you can download an all-in-one patch for 2.4.24
> as well as tar archives of the broken out patches
> (patches for older kernels available on request,
> a patch for 2.4.25i-rcX will be available soon)
>
> this release fixes the chmod() security issue, first
> reported by Markus M�ller, which allows vserver root
> to escape the chroot() jail by tampering with the
> 000 barrier.
>
> upgrade or use of the fix (patch) is advised.
>
> HTH,
> Herbert
>
> _______________________________________________
> Vserver mailing list
> Vserver_at_list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
>
>
_______________________________________________
Vserver mailing list
Vserver_at_list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

• Previous message: Herbert Poetzl: "[Vserver] [Release] Stable vs1.25 Security Update"
• In reply to: Herbert Poetzl: "[Vserver] [Release] Stable vs1.25 Security Update"
• Next in thread: Tom Walsh: "RE: [Vserver] [Release] Stable vs1.25 Security Update"