• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Linux Kernel Serial Driver Proc File Information Disclosure Vulnerability

Solution:
Debian has released an advisory (DSA 423-1) that addresses the issue that is described in this BID for the IA-64 architecture. Further details regarding obtaining and applying fixes can be found in the referenced advisory.

Red Hat has released advisory RHSA-2004:188-14 dealing with this and other issues for their enterprise linux distribution. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information.

A Linux kernel upgrade is available that resolves this issue. As this issue affects only versions 2.4.X of the affected kernel, users are advised to upgrade to version 2.6.X.

SGI has released an advisory (20040505-01-U) with fixes to address this and other issues in SGI ProPack 2.4. Please see the referenced advisory for more information.

SGI has released an advisory (20040504-01-U) with fixes to address this and other issues in SGI ProPack 3.0. Please see the referenced advisory for more information.