As a hint for other sysadmins:
For the time until a fixed debian package is available, this iptables rule
should filter all dnsupdate packets, thus mitigating the attack:
| iptables -A INPUT -p udp --dport 53 -j DROP -m u32 --u32 '30>>27&0xF=5'
Works for me, but no guaranty. I have added a secon
> I modified the hotfix so it will also patch compat_sys_vmsplice, which
> would be important on amd64 boxen with x86 compatibility enabled.
Once again: The "hotfix" and also your modification are stupid, stupid,
stupid and dangerous. The "hotfix" first attempts to try the exploit and
this corrup
Just for the record: Do not use the "hotfix" named disable-vmsplice-if-
exploitable.c. The hotfix first tries to run the exploit (which would be
totally unnecessary for the actual "fix" by the way and is therefore a
very dumb thing to do), and this still leads to kernel memory corruption
which wil
> I have prepared a little NMU to fix the failure during purging. The
> patch is attaches. As I am no DD yet I can not do an actual upload, so
> if an interested DD comes along; go ahead and do a upload.
Oh, please.
I really appreciate your help, but i think you are too impatient here.
The bug w
Package: tex-guy
Version: 1.2.4-4.2
Severity: serious
Justification: Policy 7.6
The tex-guy package is missing a build dependancy on libkpathsea-dev. If the
package
is installed it seems tex-guy can be compile correctly. Adding the dependency
and
recompiling at least fixes also Bug#358135 (dire
Just a notice:
As reported in another bug report (don't have the number yet) this bug can
be fixed by installing libkpathsea-dev (which is missing from the build
dependencies) and recompiling. At least worked for me.
Regards
Michael
--
It's an insane world, but i'm proud to be a part of i
Sorry for the delay in handling your error report. Would you please send me
the file in question so i can have a look whats the problem?
By the way: Your bug severity of 'grave' is _not_ justified, because the
program works for most users. I will regrade the bug as important.
Regards
Michael
7 matches
Mail list logo
