Szanowni Państwo,
W związku z ustawą z dnia 18 lipca 2002 roku o świadczeniu usług drogą
elektroniczną (dz.U.nr144 z 9 września 2002 r.,poz1204), prosimy o wyrażenie
zgody na przesłanie drogą elektroniczną oferty dotyczącej:
DYSTRYBUCJI KRAJOWYCH I ZAGRANICZNYCH PRZESYŁEK KURIERSKICH
Polsk
Hi,
On Tue, Jan 18, 2011 at 09:15:46AM +, Steve Kemp wrote:
> On Tue Jan 18, 2011 at 13:49:23 +1100, Silvio Cesare wrote:
>
> >lbreakout2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608980
>
> That could well be a duplicate of CAN-2004-0158, which was fixed
> in Woody:
>
>
Silvio,
Ok, thank you for your explanation. You're doing a very good job for the
security team!
Silvio Cesare wrote:
>The idea was to find buffer overflows in privileged programs in Debian that
>potentially allow for privilege escalation by a local user.
>
>I did this by building a list
On Tue Jan 18, 2011 at 22:25:20 +1100, Silvio Cesare wrote:
>This kind of testing is good for Debian security and provides some comfort
>to me at least knowing this class of vulnerability has been tested for
>against the privleged programs in the Debian repository.
Agreed.
I star
The idea was to find buffer overflows in privileged programs in Debian that
potentially allow for privilege escalation by a local user.
I did this by building a list of all suid/sgid programs in Debian packages.
I then tried using http://sharefuzz.sourceforge.net/ against those privleged
executabl
Sorry Silvio,
I don't quite follow your endeavor. Could you enlighten me (us) a bit more?
Why are you doing this? And what benefit does this information serve us?
--
Kind regards,
Kees de Jong
*
*
*De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is
uitsluitend bestemd voor d
On Tue Jan 18, 2011 at 13:49:23 +1100, Silvio Cesare wrote:
>lbreakout2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608980
That could well be a duplicate of CAN-2004-0158, which was fixed
in Woody:
http://lists.debian.org/debian-changes/2004/02/msg00029.html
Steve
--
http://w
7 matches
Mail list logo
