glibc vulnerability

Marnix Kaart marnix_lfs at mkaart.net
Mon Jun 16 01:49:38 PDT 2003


On Sunday 15 June 2003 02:23, Dagmar d'Surreal wrote:
> Your installation is not vulnerable to _remote_ exploits using the XDR
> code.  However, it may be vulnerable to exploitation by local users.  It
> is also a very bad practice to leave known flawed code installed on
> production machines.
>
> Seriously tho.  If you follow the ch6 instructions, compiling
> glibc-2.3.2 is no different from 2.3.1.  No chrooting needed.  If
> everything passes the self-tests (make check or make test, can't
> remember right now and I script it anyway) there's only an infinitesimal
> chance something could go wrong moving from glibc-2.3.1 to glibc-2.3.2.

Thanks a lot for your help (both here as on blfs-support)!

Marnix

-- 
Marnix Kaart
Reg. Linux User #267495        http://counter.li.org
Reg.  LFS  User  #5496   http://linuxfromscratch.org

()  ascii ribbon campaign - against html mail 
/\                        - against proprietary formats

--

-- 
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe lfs-security' in the subject header of the message



More information about the lfs-security mailing list