| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <C0DC2962.22758%ltr@isc.upenn.edu> Date: Thu Jul 13 21:50:09 2006 From: ltr at isc.upenn.edu (David Taylor) Subject: Debian Development Machine "Gluck" Hacked - UPDATE Curious why Secunia is rating this as 'less critical'. The way I see it, this exploit could be integrated into the other exploits for mambo, joomla, phpbb, etc. Also, all of us that have websites hosted on linux machines that have a vulnerable kernel could get root? I'm thinking 'highly critical'? On 7/13/06 4:24 PM, "Morning Wood" <se_cur_ity@...mail.com> wrote: > >> Debian Development Machine Hacked >> http://lists.debian.org/debian-devel-announce/2006/07/msg00003.html >> or >> http://www.zone-h.org/content/view/13853/31/ > > Confirmed hacked by: > Linux Kernel PRCTL Core Dump Handling Privilege Escalation Vulnerability > > http://www.debian.org/News/2006/20060713 > > or > > http://www.zone-h.org/content/view/13853/31/ ( updated ) > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ================================================== David Taylor //Sr. Information Security Specialist University of Pennsylvania Information Security Philadelphia PA USA (215) 898-1236 http://www.upenn.edu/computing/security/ ================================================== Penn Information Security RSS feed http://www.upenn.edu/computing/security/rss/rssfeed.xml Add link to your favorite RSS reader
Powered by blists - more mailing lists