Full Disclosure: Re: Linux Kernel CIFS Vulnerability

Re: Linux Kernel CIFS Vulnerability

From: Andreas Bogk <andreas () andreas org>
Date: Mon, 13 Apr 2009 20:22:30 +0200

Eugene Teo schrieb:

Btw, Linux distributors only send out an advisory if they have fixed
something. As for the CIFS vulnerability, as Marcus has mentioned, a
fix is still being worked on. You can keep track of the progress here:
http://thread.gmane.org/gmane.comp.security.oss.general/1620/focus=1629


I take back what I said about the vendors, this seems to be a reasonable
way to handle the issue.  I'm still shaking my head about the kernel
maintainers, though.

Andreas

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Linux Kernel CIFS Vulnerability, (continued)
- Re: Linux Kernel CIFS Vulnerability Raj Mathur (Apr 09)
  - Re: Linux Kernel CIFS Vulnerability Nick Boyce (Apr 10)
- Re: Linux Kernel CIFS Vulnerability Marcus Meissner (Apr 10)
  - Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 10)
    - Re: Linux Kernel CIFS Vulnerability Marcus Meissner (Apr 10)
    - Re: Linux Kernel CIFS Vulnerability Thierry Zoller (Apr 10)
    - Re: Linux Kernel CIFS Vulnerability Eugene Teo (Apr 12)
    - Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 13)
    - Re: Linux Kernel CIFS Vulnerability Eugene Teo (Apr 14)
  - Re: Linux Kernel CIFS Vulnerability Andreas Bogk (Apr 10)