version 1.197, 2002/03/07 21:47:48 |
version 1.198, 2002/03/08 20:05:52 |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata.html#openssh>March 8, 2002: |
|
An off-by-one check in OpenSSH's channel forwarding code |
|
may allow a local user to gain super-user privileges. |
<li><a href=errata.html#ptrace>January 21, 2002: |
<li><a href=errata.html#ptrace>January 21, 2002: |
A race condition between the ptrace(2) and execve(2) system calls |
A race condition between the ptrace(2) and execve(2) system calls |
allows an attacker to modify the memory contents of suid/sgid |
allows an attacker to modify the memory contents of suid/sgid |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata29.html#openssh>March 8, 2002: |
|
An off-by-one check in OpenSSH's channel forwarding code |
|
may allow a local user to gain super-user privileges. |
|
<li><a href=errata29.html#ptrace>January 21, 2002: |
|
A race condition between the ptrace(2) and execve(2) system calls |
|
allows an attacker to modify the memory contents of suid/sgid |
|
processes which could lead to compromise of the super-user account.</a> |
<li><a href=errata29.html#sudo>January 17, 2002: |
<li><a href=errata29.html#sudo>January 17, 2002: |
There is a security hole in sudo(8) that can be exploited |
There is a security hole in sudo(8) that can be exploited |
when the Postfix sendmail replacement is installed that may |
when the Postfix sendmail replacement is installed that may |