Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for May 15, 2001

  • SuSE Security Announcement: cron-3.0 (May 15, 2001, 23:30)
    "The crontab program is running setuser-id root and invokes the editor specified in the EDITOR environment variable, usually vi. If crontab discovers that the format of the edited file is incorrect, it executes the editor again but fails to drop its root privileges before. Therefore it is possible to execute arbitrary commands as root. Sebastian Krahmer has found the bug. It has been fixed by properly dropping the privileges before executing the editor."

  • Andrea Arcangeli: 2.2.20pre2aa1 (May 15, 2001, 22:29)
    Support for 4Gigabyte of RAM on IA32, support for 2T of RAM on alpha, RAW-IO,SMP scheduler improvements, GFS support, various fixes.