Security issue in kernel-vserver (all versions)
Jan Rekorajski
baggins w sith.mimuw.edu.pl
Czw, 27 Kwi 2006, 12:03:37 CEST
There is a serious security issue with all versions of linux-vserver.
All versions 2.0 and above are vulnerable.
Description:
Setting context capability (ccapabilities) gives rights to use
operations allowed by this capability to all users inside vserver.
All users of kernel-vserver are urged to upgrade to latest kernel from
CVS.
Fixed version of kernel-vserver packages will be available in ac-test
later today.
Jan
--
Jan Rękorajski | ALL SUSPECTS ARE GUILTY. PERIOD!
baggins<at>mimuw.edu.pl | OTHERWISE THEY WOULDN'T BE SUSPECTS, WOULD THEY?
BOFH, MANIAC | -- TROOPS by Kevin Rubio
Więcej informacji o liście dyskusyjnej pld-devel-pl