RE: Linux 2.4.28-rc4

From: Massimo Cetra
Date: Thu Nov 18 2004 - 19:18:04 EST

Next message: Andi Kleen: "Re: X86_64: Many Lost ticks"
Previous message: Andrew Morton: "Re: [PATCH] fix spurious OOM kills"
In reply to: Barry K. Nathan: "Re: Linux 2.4.28-rc4"
Next in thread: Chris Wright: "Re: Linux 2.4.28-rc4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Marcelo and I discussed this via private e-mail; it's in the
> queue for 2.4.29-pre. I think in the end we both agreed that
> it's too late in the
> 2.4.28 cycle to include these patches.
>
> -Barry K. Nathan <barryn@xxxxxxxxx>

Why such a decision ?

Do you think that it is not exploitable or at least not in a short time ?

I don't think 2.4.29 will see the light in a short time so, unless there are
serious problems arising from these patches (and 2.6 should be affected
too), I think that for the sake of security it may be worthy and clever
includind these patches (and delay 2.4.28 for some days...)

M$ is waiting for a gold occasion to shot on linux.
A known buffer overflow, not patched soon, may be used against linux and,
what interest me more, we could avoid updating kernels on tons pf production
servers for something which could be patched before.

Massimo Cetra

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andi Kleen: "Re: X86_64: Many Lost ticks"
Previous message: Andrew Morton: "Re: [PATCH] fix spurious OOM kills"
In reply to: Barry K. Nathan: "Re: Linux 2.4.28-rc4"
Next in thread: Chris Wright: "Re: Linux 2.4.28-rc4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]