Re: Linux

From: Greg KH
Date: Wed Aug 23 2006 - 04:39:11 EST

On Wed, Aug 23, 2006 at 10:35:04AM +0200, Matthias Andree wrote:
> (Removing stable@ from Cc:)
> Greg KH schrieb am 2006-08-22:
> > Sridhar Samudrala:
> > Fix sctp privilege elevation (CVE-2006-3745)
> I've seen gazillions of CVE numbers for SCTP over the past months.
> Should perhaps SCTP be dropped from the kernel until it has been audited
> for security by at least two independent parties?

Are you willing to be one of those independent parties?

And if you haven't noticed, it seems that people are finally auditing
the thing, luckily no one really uses it in the wild :)


greg k-h
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at
Please read the FAQ at