[Sussex] web security glitch!!

Colin King colin.king at freeuk.com
Wed Jul 9 07:19:52 UTC 2008


On Wed, 2008-07-09 at 07:41 +0100, Steve Redshaw wrote:
> Internet security breach tackled
> 
> BBC news website - 9.7.08
> http://news.bbc.co.uk/1/hi/technology/7496735.stm
> 
> does this have any implications for Linux users? the news article does
> not go into much detail about how users can be directed to phoney web
> sites or the specific conditions a computer might have to make it a
> risk, but as Linux does not have automatic updates this could be a
> problem?

I believe I just saw the fix is in today's Ubuntu updates:

  * SECURITY UPDATE: Randomize UDP query source ports to improve forgery
resilience.
  * References
    CVE-2008-1447








More information about the Sussex mailing list