Red Hat Bugzilla – Bug 89036
remote root in RH8
Last modified: 2007-03-27 00:03:10 EDT
Folks -- I'm pretty sure I've found a remote-root hole in the default install of Red Hat 8.0. I'm on x86, but I think it would be present on all archs. Before I provide the details though (and fix the component ;), is the public bugzilla the correct forum for this? Version-Release number of selected component (if applicable): to be filled out... How reproducible: Always Steps to Reproduce: 1. to be filled out...
Thanks for taking the time to contact us. I'm changing the component to "distribution" to more properly reflect the nature of what you're reporting. I'll leave it to the component owner to determine how best to proceed in this matter...
We'd prefer that for non-public issues you contact our security response team at security@redhat.com who'll be able to work with you on the issue. More contact details, GPG keys, and so on at http://www.redhat.com/solutions/security/news/contact.html
Issue is not a remote root but a DoS, and is fixed in Red Hat Linux 9 and above. Being dealt with by security@redhat.com, closing bug.