| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20101122203236.029c86e3@nehalam> Date: Mon, 22 Nov 2010 20:32:36 -0800 From: Stephen Hemminger <shemminger@...tta.com> To: Ben Hutchings <ben@...adent.org.uk> Cc: David Miller <davem@...emloft.net>, Greg Kroah-Hartman <gregkh@...e.de>, netdev <netdev@...r.kernel.org>, devel@...verdev.osuosl.org, Debian kernel maintainers <debian-kernel@...ts.debian.org> Subject: Re: [PATCH 2/3] econet: Move to staging On Tue, 23 Nov 2010 03:52:28 +0000 Ben Hutchings <ben@...adent.org.uk> wrote: > Recent review has revealed several bugs in obscure protocol > implementations that can be exploited by local users for denial of > service or privilege escalation. > > The econet protocol (PF_ECONET) is unmaintained. There appear to be > no published applications for it, and it has never progressed beyond > 'experimental' status. > > This protocol generally should not be enabled by distributions, since > the cost of a security flaw affecting all installed systems presumably > outweighs the benefit to the few (if any) legitimate users. > > Signed-off-by: Ben Hutchings <ben@...adent.org.uk> This I agree with. Probably the Arcnet devices as well. Most distro's don't enable it anyway. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists