Hi, I've just released Linux 2.2.20-ow2. This version of the patch fixes an x86-specific Linux kernel vulnerability where local users could abuse a binary compatibility interface (lcall) to kill processes not belonging to them (including system processes). The patch is available at the usual location: http://www.openwall.com/linux/ Both Owl-current and Owl 0.1-stable have been updated to include this version of the patch. (There's no updated Owl-current ISO image yet, though, but once there is it will have the new patch.) As promised, I've also released our NordU2002 presentation slides on Owl, as well as an updated version of the SSH Traffic Analysis slides (as used at NordU2002). The URL is: http://www.openwall.com/presentations/ -- /sd
This archive was generated by hypermail 2.1.3 : Sun Jan 15 2006 - 13:43:16 PST