Re: Linux 2.2.16

From: Christopher McCrory (chrismcc@netus.com)
Date: Fri Jun 09 2000 - 12:36:37 EST

Next message: mad@students.zcu.cz: "Re: Running Untrusted Code in a Restricted Process"
Previous message: Brian Gerst: "Re: Running Untrusted Code in a Restricted Process"
In reply to: Alan Cox: "Linux 2.2.16"
Next in thread: Khimenko Victor: "Re: Linux 2.2.16"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello...

Alan Cox wrote:
>
> Linux 2.2.16 security release
>
> The following security problems are fixed by this release
>
> o Setuid applications. even when correctly checking for failures of
> setuid() calls could fail to drop priviledges if the invoker had
> made certain adjustments to the capability sets
>

        I didn't see this infomation stated anywhere. When was this code
introduced?
        Does it effect all 2.2.x ? 2.3.x ? 2.0.x ?

        TIA

<snip>

Christopher McCrory Lead Bithead, Netus Inc. chrismcc@netus.com admin@netus.com

"Linux: Because rebooting is for adding new hardware"

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: mad@students.zcu.cz: "Re: Running Untrusted Code in a Restricted Process"
Previous message: Brian Gerst: "Re: Running Untrusted Code in a Restricted Process"
In reply to: Alan Cox: "Linux 2.2.16"
Next in thread: Khimenko Victor: "Re: Linux 2.2.16"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Jun 15 2000 - 21:00:19 EST