Linux 2.4.2{3,4} + vulnerabilities.

Ronald Hummelink ronald at
Mon Jan 5 08:11:08 PST 2004


Linux 2.4.23 fixes do_brk() syscall trough which a number of high
profile servers got rooted.
Linux 2.4.24 fixes mremap() syscall trough which the same could be

Imho it is time to do a number of 'minor' package upgrades and release
lfs 5.0.1 or 5.1, whatever as imho it is irresponsible to keep telling
people 'fbbg' and send them on with known high profile local


Linux is like a small snowball rolling downhill. Microsoft is just
waiting down the mountain...

More information about the lfs-dev mailing list