[d-kernel] RHSA-2003:238-01

[Alexey Borovskoy]

Добрый день.

Updated 2.4 kernel fixes vulnerabilities
http://www.security.nnov.ru/search/document.asp?docid=4884

Меня вот эти штуковины беспокоят:

CAN-2003-0462: Paul Starzetz discovered a file read race 
condition existing in the execve() system call, which could 
cause a local crash.

CAN-2003-0464: A recent change in the RPC code set the reuse flag 
on newly-created sockets.  Olaf Kirch noticed that his could 
allow normal users to bind to UDP ports used for services such 
as nfsd.

CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding 
table could be spoofed by sending forged packets with bogus 
source addresses the same as the local host.

Что думает сообщество? Или только после Феста5?

-- 
Алексей.
JID:alb at jabber.ru