Trustix Secure Linux Security Advisory: kernel | Linux Today
Developer
SHARE
Facebook X Pinterest WhatsApp

Trustix Secure Linux Security Advisory: kernel

Written By
Web Webster
Web Webster
Oct 19, 2001 
Date: Fri, 19 Oct 2001 17:40:40 +0200
To: tsl-announce@trustix.org
Subject: TSLSA-2001-0028
From: Trustix Secure Linux Advisor <tsl@trustix.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Security Advisory #2001-0028

Package name:      kernel
Severity:          local root exploit and DoS attack
Date:              2001-10-19
Affected versions: TSL 1.01, 1.1, 1.2, 1.5

- --------------------------------------------------------------------------

Problem description:
  As reported on Bugtraq, there is a local root exploit in the Linux
  kernel involving the ptrace call.  In addition, it is possible to create
  a Denial of Service attack in the kernel by creating a number of symlinks.


Action:
  We recommend that all systems with this package installed are upgraded.


Location:
  All TSL updates are available from
  <URI:http://www.trustix.net/pub/Trustix/updates/>
  <URI:ftp://ftp.trustix.net/pub/Trustix/updates/>


Automatic updates:
  Users of the SWUP tool, can enjoy having updates automatically
  installed using 'swup --upgrade'.  Note that kernel packages are not
  normally suited for automatic updates.

  Get SWUP from:
  <URI:ftp://ftp.trustix.net/pub/Trustix/software/swup/>


Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.net/support/>


Verification:
  This advisory along with all TSL packages are signed with the TSL sign key.
  This key available from:
  <URI:http://www.trustix.net/TSL-GPG-KEY>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.net/errata/trustix-1.2/> and
  <URI:http://www.trustix.net/errata/trustix-1.5/>
  or directly at
  <URI:http://www.trustix.net/errata/misc/2001/TSL-2001-0028-kernel.asc.txt>

MD5sums of the packages:
- --------------------------------------------------------------------------
500f7da5dc643c7da6b900023a18ea73  ./1.5/SRPMS/kernel-2.2.19-6tr.src.rpm
2dfad37c0f412ea6cdb30934ea7dd45c  ./1.5/RPMS/kernel-utils-2.2.19-6tr.i586.rpm
85e40ee2b1fb318e3a8672a3d726b266  ./1.5/RPMS/kernel-source-2.2.19-6tr.i586.rpm
53df116dd5786ba0f4ab7a78323ca982  ./1.5/RPMS/kernel-smp-2.2.19-6tr.i586.rpm
89763c2dafdba3219eba79f98c3cf103  ./1.5/RPMS/kernel-headers-2.2.19-6tr.i586.rpm
5ded0004d78152eeb41fed36909a5515  ./1.5/RPMS/kernel-doc-2.2.19-6tr.i586.rpm
21bf7f1ea5b670a528ece7912e1319c1  ./1.5/RPMS/kernel-BOOT-2.2.19-6tr.i586.rpm
10e836c1b2e459dce8345d2c6cc8f738  ./1.5/RPMS/kernel-2.2.19-6tr.i586.rpm
500f7da5dc643c7da6b900023a18ea73  ./1.2/SRPMS/kernel-2.2.19-6tr.src.rpm
6c49ef02fb26a9c3dec8aab08620e6e4  ./1.2/RPMS/kernel-utils-2.2.19-6tr.i586.rpm
24002feba70659641807d6b6c68bc2ed  ./1.2/RPMS/kernel-source-2.2.19-6tr.i586.rpm
fb18289a3345a6bfec070301b47cd4cc  ./1.2/RPMS/kernel-smp-2.2.19-6tr.i586.rpm
21bb28fdb231fe880769814cf101c5a2  ./1.2/RPMS/kernel-headers-2.2.19-6tr.i586.rpm
0f99bd15cf50a79a24672cfb5a491e90  ./1.2/RPMS/kernel-doc-2.2.19-6tr.i586.rpm
8bfcdb3bb9e068ac15c70106b54c6bd6  ./1.2/RPMS/kernel-BOOT-2.2.19-6tr.i586.rpm
36e40a852babfc41ff9ec85aa18891ff  ./1.2/RPMS/kernel-2.2.19-6tr.i586.rpm
500f7da5dc643c7da6b900023a18ea73  ./1.1/SRPMS/kernel-2.2.19-6tr.src.rpm
62d807a4fcd315db50ee240fda1c4226  ./1.1/RPMS/kernel-utils-2.2.19-6tr.i586.rpm
0e94b87f217e61a6d74e7877ef4f11d8  ./1.1/RPMS/kernel-source-2.2.19-6tr.i586.rpm
21552807585588aba14f67c8db557af2  ./1.1/RPMS/kernel-smp-2.2.19-6tr.i586.rpm
9894fc169fe6b368311aed91829214e1  ./1.1/RPMS/kernel-headers-2.2.19-6tr.i586.rpm
bfec88d913d66927aa380540dc338ed4  ./1.1/RPMS/kernel-doc-2.2.19-6tr.i586.rpm
1ad783de52bc35e5cb2f83e4dbeadb69  ./1.1/RPMS/kernel-BOOT-2.2.19-6tr.i586.rpm
558f90d81e88084515626a5ed5341c2c  ./1.1/RPMS/kernel-2.2.19-6tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team
 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE70EMewRTcg4BxxS0RAjS8AJ4hqLEmDo2BBSonmPAaMS8TSfUhjgCcDDzH
b1TJs/wQKBrKvZKdUWeJfTA=
=ZLsg
-----END PGP SIGNATURE-----
Web Webster

Web Webster

Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

facebook
linkedin
x

Company

Contact us

Categories

News IT Management Infrastructure Developer Security High Performance Storage Blog

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information