Re: CDE

From: Dave Dittrich (dittrichat_private)
Date: Thu Oct 22 1998 - 10:25:12 PDT

Next message: joshua grubman: "Re: solaris tape dev permission stupidity (fwd)"

Previous message: Ben Collins: "Re: SVGATextMode 1.8 /tmp race"
Maybe in reply to: base16at_private: "CDE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I just got a letter from RedHat asking me to return my CDE software and
> uninstall it. Apperantly there are some major security holes which enable
> a user to get root access and  "Several exploits have been found that
> allow any user on your network to gain full access to your CDE session."
> I've searched the web for any info on this and found nothing, sorry if
> this is not new news - I just got the letter today.

Its probably the ToolTalk bug:

        http://ciac.llnl.gov/ciac/bulletins/i-091.shtml

--
Dave Dittrich                 Client Services
dittrichat_private   Computing & Communications
                              University of Washington

<a href="http://www.washington.edu/People/dad/">
Dave Dittrich / dittrichat_private [PGP Key]</a>

Next message: joshua grubman: "Re: solaris tape dev permission stupidity (fwd)"
Previous message: Ben Collins: "Re: SVGATextMode 1.8 /tmp race"
Maybe in reply to: base16at_private: "CDE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:20:36 PDT