[Secure-testing-team] 2.6.13.{123}

Horms horms at debian.org
Thu Oct 6 15:34:52 UTC 2005


On Thu, Oct 06, 2005 at 03:39:22PM +0200, Moritz Muehlenhoff wrote:
> Horms wrote:
> > The next things I will be looking at are:
> >   Checking off CAN Numbers
> > 
> > I have put my notes in SVN - there is nothing private there.
> > These include notes on each of 2.6.13.{123} and a list
> > of recently released CAN numbers. I think some of the 
> > CAN numbers correlate to 2.6.13.{123} patches which don't
> > have CANs, but I have not checked.
> 
> I can do so on sunday, if anybody has free time before, please go ahead.

Thanks, I will try and do it tomorrow, but if I don't then
I almost certainly won't get to it until Tuesday or Wednesday.

> > It also seems to me that none of the patches in 2.6.13.3 are security
> > related, I'd apprciate someone casting an eye over that.
> 
> It's not obvious from the code, but the description for 
> 
> | Stephen Hemminger:
> |  skge: set mac address oops with bonding
> 
> seems to indicate that a user can trigger an oops by setting a MAC
> address with ifconfig?

I'll take a look, but isn't that a privelaged oppertion anyway?

-- 
Horms




More information about the Secure-testing-team mailing list