Language Selection

English French German Italian Portuguese Spanish

Month of Kernel Bugs: Linux in the lead

Filed under
OS

At this point in time, nine vulnerabilities in operating system kernels have been publicised as part of the Month of Kernel Bugs. Following on July's Month of Browser Bugs initiated by H.D. Moore, a similar project to highlight security vulnerabilities has been announced for November under the title "Month of Kernel Bugs" (MoKB). The project's initiators intend to release one security hole per day for the various operating system kernels. Up until now, fuzzing tools like "fsfuzzer" and "fs-bugs" have been used to turn up the errors.

Three of the publicised holes affect Linux kernel 2.6, two FreeBSD 6.1, two Mac OS X, one Solaris and one Windows. Proof of concept exploits have already been released for seven of the vulnerabilities, demonstrating the problems in the respective kernels.

No patches have been released for any of the vulnerabilities as yet.

Full Story.

More in Tux Machines

Leftovers: Gaming

Android Leftovers

Leftovers: OSS

Security Leftovers

  • Sick of memorizing passwords? A Turing Award winner came up with this algorithmic trick
    Manuel Blum, a professor of computer science at Carnegie Mellon University who won the Turing Award in 1995, has been working on what he calls "human computable" passwords that are not only relatively secure but also don't require us to memorize a different one for each site. Instead, we learn ahead of time an algorithm and a personal, private key, and we use them with the website's name to create and re-create our own unique passwords on the fly for any website at any time.
  • Car thieves use 'mystery device' to break into vehicles
    A car manufacturer recalled more than a million cars following security concerns about car hacking, as the National Insurance Crime Bureau issued an alert about a "mystery device" being used to break into vehicles by defeating the electronic locking system of later-model cars. So-called connected car "convenience technology" could put consumers at risk. "Right now, what has happened is the digital key fob has become a way for someone to steal your car," NICB investigator James "Herb" Price said.
  • Security Considerations When Moving from VMs to Containers
    We recently ran a sponsored series from Fox Technologies on Linux.com. We want to thank the company for its support and for sharing useful information for SysAdmins and developers alike. Fox Technologies is continuing the conversation with a free webinar September 17 that will address security considerations in moving from VMs to containers. More information about this webinar is below.