Linux Kernel TIOCSETD Terminal Subsystem Race Condition Vulnerability Solution:
This issue has been addressed in version 2.6.9 of the Linux Kernel. Patches are also available for 2.4.x releases.
The Fedora Legacy project has released advisory FLSA:2336 to address this issue for Red Hat Fedora Core 1, Red Hat Linux 7.3 and 9. Please see the referenced advisory for further information.
Ubuntu Linux has released advisory USN-38-1 along with fixes to address this, and other issues. Please see the referenced advisory for further information.
MandrakeSoft has issued fixes in advisory MDKSA-2005:022. See reference section.
TurboLinux has released Turbolinux Security Announcement 28/Feb/2005 dealing with this and other issues. Please see the referenced advisory for more information.
SuSE Linux has released advisory SUSE-SA:2005:018 along with fixes dealing with this and other issues. Please see the referenced advisory for more information.
Red Hat released advisory RHSA-2005:293-16 as well as fixes to address this and other issues on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisories for additional information.
Avaya has released advisory ASA-2005-120 stating which Avaya products are vulnerable to this issue. Please see the referenced advisory for further details. No Avaya fixes are currently available.
Linux kernel 2.4.20
Linux kernel 2.4.21
Linux kernel 2.4.22
Linux kernel 2.4.25
Linux kernel 2.4.5
Linux kernel 2.6 -test6
Linux kernel 2.6 -test4
Linux kernel 2.6 -test2
Linux kernel 2.6 -test7
Linux kernel 2.6 -test9
Linux kernel 2.6 -test10
Linux kernel 2.6.1 -rc2
Linux kernel 2.6.1
Linux kernel 2.6.2
Linux kernel 2.6.3
Linux kernel 2.6.4
Linux kernel 2.6.6 rc1
Linux kernel 2.6.6
Linux kernel 2.6.7
Linux kernel 2.6.8 rc2
Linux kernel 2.6.8 rc1
