Linux kernel /zlib security vulnerability  | | 
March 11th, 2002, 08:51 PM
|
#1 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: Lat:36.5N, Lon:95.5W
Posts: 1,274
| Linux kernel /zlib security vulnerability
Monday March 11, 01:02 PM EST
- By Grant Gross -
A buffer overflow vulnerability affecting the PPP code in the Linux kernel, Netscape and up to 20 packages in some Linux distributions has been found in the popular compression library zlib. The potential is for crackers to gain remote access to computer systems using zlib, but a fix is available.
The rest of the story: http://www.newsforge.com/article.pl?.../03/11/1558245 Germ
__________________
How do you set this laser printer to stun??
| 
|  | |
March 11th, 2002, 08:53 PM
|
#2 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: Chicago, IL
Posts: 2,514
|
Thanks Germ -
also - it looks like this was a potential bug, there are no known instnaces where it was exploited.
__________________
Odds are very good there are several spelling mistakes in this post.
| |
| | |
March 11th, 2002, 08:56 PM
|
#3 (permalink)
| | Not Really a Member
Join Date: Oct 2001
Posts: 25,392
|
Ouch!
Thats a nasty bugger 
If anybody gets it patched, post up how easy/difficult it was.. it said it effected several packages so should be fun  lol
Patches, we don't need no stinkin' patches!
__________________
Helicopters don't fly; they vibrate so much and make so much noise that the earth rejects them.
| 
| | |
March 11th, 2002, 09:37 PM
|
#4 (permalink)
| | The Mad Redhatter
Join Date: Oct 2001 Location: NJ
Posts: 3,552
|
the redhat network already has the patch available, and i am sure that most of the other major distros have the patch available again... | |
| | |
March 12th, 2002, 12:56 AM
|
#5 (permalink)
| | Member
Join Date: Jan 2002 Location: Utah
Posts: 182
|
Yes, I heard about this on the Screen Savers tonight. For once Microsoft isn't the one with the security hole. How amusing. | |
| | |
March 12th, 2002, 08:21 PM
|
#6 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: Lat:36.5N, Lon:95.5W
Posts: 1,274
|
Yea, it's a real laugh fest.
Red Hat and Mandrake both have fixes posted at their sites.
Germ | |
| | |
March 15th, 2002, 07:50 AM
|
#7 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: Lat:36.5N, Lon:95.5W
Posts: 1,274
|  Microsoft's borrowed code may pose risk
__________________________________________________
As reported earlier this week by CNET News.com, a flaw in the zlib software-compression library could leave much of the systems based on the open-source operating system Linux open to attack.
On Thursday, researchers reported that at least nine of Microsoft's major applications--including Microsoft Office, Internet Explorer, DirectX, Messenger and Front Page--appear to incorporate borrowed code from the compression library and could be vulnerable to a similar attack.
__________________________________________________ _
Are you still amused Polygon?
Germ | |
| | | Thread Tools | Search this Thread | | | | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Most Active Discussions  | | | | |   Recent Discussions  | | | | |
 |
hardware
prices 
