| New User, Welcome! Login |
Eee PC
Hash: SHA1
Hi,
Considering that there are not updates available for Samba on ASUS Eee
PC (it runs a modified version o Samba as far as we know, smb protocol
is only partially supported), and even considering the fact that it is
Linux and not Microsoft Windows (the main reason that made us write this
blog post), we think it is not the same scenario.
Best regards,
-----Original Message-----
From: RISE Security [mailto:advisories@risesecurity.org]
Sent: Friday, February 08, 2008 2:47 PM
To: bugtraq@securityfocus.com
Subject: ASUS Eee PC rooted out of the box
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
We recently acquired an ASUS Eee PC (if you want to know more about it,
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
We recently acquired an ASUS Eee PC (if you want to know more about it,
a lot of reviews are available on internet). The first thing we did when
we put our hands at the ASUS Eee PC was to test its security. The ASUS
Eee PC comes with a customized version of Xandros operating system
installed, and some other bundled software like Mozilla Firefox, Pidgin,
Skype and OpenOffice.org.
ASUS (www.asus.com)
Systems Affected:
~~~~~~~~~~~~~~~~~
ASUS EeePC series
ASUS P5* series
ASUS B50A series
ASUS P6T series
other systems not tested
changes to other locations in the file. (CVE-2008-4554)
Additionaly, a problem with TCP options ordering, which could manifest
as connection problems with many websites (bug #43372), was solved, a
number of fixes for Intel HDA were added, another number of fixes for
issues on Asus EEE PC, Panasonic Let's Note, Acer One, Dell XPS, and
others, were also added. Check package changelog for more information.
To update your kernel, please follow the directions located at:
and local attack vectors, probably related to reading or writing
kernel memory. (CVE-2008-1675)
Additionaly, some fixes were made, related to: iwlwifi (small bug
interacting with drakconnect interface detection), brightness handling
on EeePc, uvcvideo on Thinkpad X300, sound for TOSHIBA Satellite Pro
A200 and A210, RealTek 8169 ethernet, unionfs, and more.
To update your kernel, please follow the directions located at:
http://www.mandriva.com/en/security/kernelupdate
involving an unmount of an ext3 filesystem. (CVE-2010-0623)
Aditionally, the kernel was updated to the 2.6.31.13 stable release,
it was added support for Cirrus Logic CS420x HDA codec, Wacom driver
was updated to version 0.8.5-12 and there is a fix in the driver for
backlight on Eee PC 1201HA.
To update your kernel, please follow the directions located at:
http://www.mandriva.com/en/security/kernelupdate
_______________________________________________________________________
to cause a denial of service (panic) via vectors related to sending
an SCM_RIGHTS message through a UNIX domain socket and closing file
descriptors. (CVE-2008-5029)
Additionaly, support for a broadcom bluetooth dongle was added to btusb
driver, an eeepc shutdown hang caused by snd-hda-intel was fixed,
a Realtek auto-mute bug was fixed, the pcspkr driver was reenabled,
an acpi brightness setting issue on some laptops was fixed, sata_nv
(NVidia) driver bugs were fixed, horizontal mousewheel scrolling
with Logitech V150 mouse was fixed, and more. Check the changelog
and related bugs for more details.
|
|
|
