Sun Security Patch Introduces Security Hole

← Back to Stories (view on slashdot.org)

Sun Security Patch Introduces Security Hole

Posted by CowboyNeal on Thursday December 12, 2002 @07:29PM from the patches-for-patches dept.

Rich0 writes "Sun is announcing that their 'Security Hardening Package' for their Cobalt RaQ 4 Linux servers allows remote users to execute arbitrary code. Ironically, the solution is to remove the package, potentially removing protection from other compromises. There's a CERT advisory, as well as an article posted on Extremetech." Yikes, one would hope there's a forthcoming patch in the works.

5 of 265 comments (clear)

Min score:

Reason:

Sort:

Yet Another Reason No One Takes Linux Seriously by SuperDuG · 2002-12-12 19:47 · Score: 5, Funny

Well take a look people...
MS: doesn't release bug fixes because their are no bugs. Only security updates and service packs to appease people.
Sun: releases a bug fix with an even bigger bug.
Linux: released bug fixes quickly.
And that's it, linux will forever be in last because of the fact they can't follow simple rules. You would think that everyone had a copy of Linux's source the way bugs are spotted and fixed so quick .. sheesh. Perhaps we should try and sell the source of linux to India?
PS - that was sarcasm ...

--
Ignore the "p2p is theft" trolls, they're just uninformed
1. Re:Yet Another Reason No One Takes Linux Seriously by jsse · 2002-12-12 20:43 · Score: 3, Funny
  
  That reminds me of a meeting when I worked for IBM.
  
  Manager: "From now on we don't call *point at a thick pile of papers* these 'problem logs' or 'bugs', we call them 'Instances'."
  
  Programmer: "So....we've...673 'Instances' pending right? Can we conclude this 2-hour meeting so that we could continue fixing bugs?"
  
  All Managers: "INSTANCES"
  
  Poor programmer: "Argh...sorry, 'Instances', right?....can we go now?"
2. Re:Yet Another Reason No One Takes Linux Seriously by cyb97 · 2002-12-12 20:51 · Score: 3, Funny
  
  Shouldn't that be Linux: released bug fixes quickly, however the bugfix will corrupt your harddrive, but the securityhole is closed... (2.4.20 - ext3 ?)
Man speaking to cylist by roadside by kfg · 2002-12-12 20:30 · Score: 5, Funny

"What on *earth* are you doing there?"

"I'm ripping the patch off this inner tube."

"You're taking the patch off? Whatever for?"

"Well, you see, it's got this big hole in it."

"Ummmmmmmmm, are you *sure* you know what you're doing?"

"Don't worry, I can patch the patch when I get home and then nail it back on."

KFG
See? by Hubert_Shrump · 2002-12-13 05:44 · Score: 3, Funny

I so told you that Microsoft was a trend-setter.

You owe me a buck, man.

--
Keep your packets off my GNU/Girlfriend!