Re: Linux 2.6.17.10

From: Greg KH
Date: Wed Aug 23 2006 - 04:39:11 EST

Next message: Paul Slootman: "Re: 2.6.18-rc3-git3 - XFS - BUG: unable to handle kernel NULL pointer dereference at virtual address 00000078"
Previous message: Mathiasen, Torben: "RE: [PATCH] Update Documentation/devices.txt"
In reply to: Matthias Andree: "Re: Linux 2.6.17.10"
Next in thread: Jan Engelhardt: "Re: Linux 2.6.17.10"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Aug 23, 2006 at 10:35:04AM +0200, Matthias Andree wrote:
> (Removing stable@ from Cc:)
>
> Greg KH schrieb am 2006-08-22:
>
> > Sridhar Samudrala:
> > Fix sctp privilege elevation (CVE-2006-3745)
>
> I've seen gazillions of CVE numbers for SCTP over the past months.
>
> Should perhaps SCTP be dropped from the kernel until it has been audited
> for security by at least two independent parties?

Are you willing to be one of those independent parties?

And if you haven't noticed, it seems that people are finally auditing
the thing, luckily no one really uses it in the wild :)

thanks,

greg k-h
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Paul Slootman: "Re: 2.6.18-rc3-git3 - XFS - BUG: unable to handle kernel NULL pointer dereference at virtual address 00000078"
Previous message: Mathiasen, Torben: "RE: [PATCH] Update Documentation/devices.txt"
In reply to: Matthias Andree: "Re: Linux 2.6.17.10"
Next in thread: Jan Engelhardt: "Re: Linux 2.6.17.10"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]