[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Linux CVE-2014-0196

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Linux CVE-2014-0196
From: zwiebel@xxxxxxxxxxxxxxxx
Date: Tue, 13 May 2014 21:28:56 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 13 May 2014 15:29:09 -0400
Importance: normal
In-reply-to: <20140513182615.GS32434@xxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <trinity-66a75f50-91ee-4916-99ee-c4271593514a-1400004687939@3capp-gmx-bs70>, <20140513182615.GS32434@xxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
Sensitivity: Normal

> > 
> > I received a notice from a server provider to immediatly
> > update/upgrade/reboot if I would use Debian. It's the CVE-2014-0196 issue. I
> > did and it came up with Wheezy 3.2.57-3+deb7u1 which should be fine. How
> > relevant is this issue?
> 
> From what I gather, you're only affected if you're not the only user in the
> box. If you run a system dedicated only to tor, you should be safe.
> 

I understand from what you say and what I read. At least a good chance for an update.

Thanks, Felix
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Linux CVE-2014-0196
  - From: zwiebel
- Re: [tor-relays] Linux CVE-2014-0196
  - From: David Serrano

Prev by Author: [tor-relays] Linux CVE-2014-0196
Next by Author: Re: [tor-relays] relay not receiving very much traffic
Previous by thread: Re: [tor-relays] Linux CVE-2014-0196
Next by thread: [tor-relays] Ops request: Deploy OpenVPN terminators
Index(es):
- Author
- Thread