44 security flaws in various Unix!
Results 1 to 3 of 3

Thread: 44 security flaws in various Unix!

  1. #1
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126

    44 security flaws in various Unix!

    Students of iconoclastic computer scientist Daniel Bernstein have found some 44 security flaws in various Unix applications, according to a list of advisories posted online.

    The flaws, which range from minor slipups in rarely used applications to more serious vulnerabilities in software that ships with most versions of the Linux operating system, were found as part of Bernstein's graduate level course at the University of Illinois at Chicago.

    The advisories regarding the flaws were dated Wednesday and can be found on the Web site of student James Longstreet. Bernstein, a professor of computer science at the university, did not immediately respond to inquiries about the vulnerabilities.

    The latest crop of security flaws comes two days after a software-testing firm announced that it had found 985 flaws in the latest Linux kernel during the past four years using the company's analysis software. While the number seems high, it is far lower than most commercial software, the company said.

    Each person in the class during the fall semester had to find 10 flaws, a task that counted toward 60 percent of their grade for the class, according to class notes posted on Bernstein's Web site. With only 44 flaws discovered among a reported 25 students, the students better hope for a generous bell curve.
    Source : http://news.zdnet.com/2100-1009_22-5492969.html

    List of Every Holes Found : http://tigger.uic.edu/~jlongs2/holes/

    Secunia Advisories for the one of the holes : http://secunia.com/advisories/13381
    -Simon \"SDK\"

  2. #2
    Senior Member
    Join Date
    Nov 2001
    Posts
    1,255
    And people don't like QMail, even though it's not been broken.
    Bernstein at least knows what he's talking about, and it's good to see that's being passed onto his students (or at least some of them).
    Chris Shepherd
    The Nelson-Shepherd cutoff: The point at which you realise someone is an idiot while trying to help them.
    \"Well as far as the spelling, I speak fluently both your native languages. Do you even can try spell mine ?\" -- Failed Insult
    Is your whole family retarded, or did they just catch it from you?

  3. #3
    AO BOFH: Luser Abuser BModeratorFH gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Originally posted here by chsh
    And people don't like QMail, even though it's not been broken.
    Bernstein at least knows what he's talking about, and it's good to see that's being passed onto his students (or at least some of them).
    Don't forget his other work:

    EZMLM

    Goes tightly with Qmail

    Most people already know I have a Violent hatred of Sendmail.
    Kill the lights, let the candles burn behind the pumpkins’ mischievous grins, and let the skeletons dance. For one thing is certain, The Misfits have returned and once again everyday is Halloween.The Misfits FreeBSD
    Cannibal Holocaust
    SuSE Linux
    Slackware Linux

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides