[rsbac] Bugfixing the kernel uselib vulnerability

Amon Ott ao at rsbac.org
Thu Jan 13 12:27:09 CET 2005 

On Mittwoch 12 Januar 2005 15:08, Amon Ott wrote:
> On Mittwoch 12 Januar 2005 11:29, Andrea Pasquinucci wrote:
> One thing we could do is to have another subversion tree, which 
> includes all RSBAC and third party security bugfixes, and which gets 
> rolled into a complete kernel after every change.

I have started this new tree at 
svn://rsbac.mprivacy-update.de/rsbacfixed

It currently only contains 2.4.28-rsbac-v1.2.3 with bugfixes 1-11 
(where appropiate) and the uselib bugfix I posted to this list. More 
will certainly come. Automatic packaging into a pre-patched source 
archive will be added soon.

Each source tree contains a file BUGFIXES with a list of all bugfixes 
applied and a subdir BUGFIXES-third-party, which contains all outside 
bugfixes.

> We would really need people maintaining this tree and testing it, 
> though.

We need contributors and testers. Jörg Weber, the Adamantix kernel 
maintainer, has already signalled that he would like to help.

So, folks, please tell what bugfixed source trees you need:
- 2.4.28-rsbac-pax?
- 2.6.10-rsbac?
- 2.6.10-rsbac-pax?

Specially continously bugfixing 2.6.x will be more work than I can 
handle without help - so I need volunteers for this. Please post 
security bugs that you desire to be fixed to this list, so none of 
them gets dropped.

There is a discussion about a central Linux kernel authority for 
security bug reports and fixes going on at the Linux kernel mailing 
list. I expect a central repository with broken out patches soon, 
which will make our life much easier.

BTW, 2.4.29 will be out soon. Known bugs should be fixed there. This 
does not remove the need to fix existing 2.4.28 installations, 
though.

Amon.
-- 
http://www.rsbac.org - GnuPG: 2048g/5DEAAA30 2002-10-22
-------------- nächster Teil --------------
Ein Dateianhang mit Bin?rdaten wurde geschreddert...
Dateiname   : nicht verf?gbar
Dateityp    : application/pgp-signature
Dateigr??e  : 189 bytes
Beschreibung: nicht verf?gbar
URL         : http://www.rsbac.org/pipermail/rsbac/attachments/20050113/b60ac0ea/attachment.bin

More information about the rsbac mailing list