Language Selection

English French German Italian Portuguese Spanish

Linux Kernel Local DoS and Security Bypass Issues

Filed under
Security

Rated as : Low Risk

Multiple vulnerabilities were identified in Linux Kernel, which could be exploited by local attackers to cause a denial of service or bypass certain security restrictions.

The first issue is due to a memory leak error in "/security/keys/request_key_auth.c", which could be exploited by malicious users to cause a denial of service.

The second vulnerability is due to a memory leak error in "/fs/namei.c" when the CONFIG_AUDITSYSCALL option is enabled, which could be exploited by malicious users to cause a denial of service.

The third flaw is due to an error in the file "drivers/char/drm/drm_stub.c" that does not properly validate "debug" sysfs permissions, which could be exploited by local attackers to bypass certain security restrictions and enable drm debugging.

Full Details.

More in Tux Machines

Why Ubuntu-based Distros Are Leaders

One distribution that comes to mind is Ubuntu. Built from a solid Debian base, Ubuntu has not only become an incredibly popular Linux distro, it's also made countless other distributions such as Linux Mint a reality. In this article, I'll explore why I believe Ubuntu wins the Linux distribution wars and how it's influenced Linux on the desktop as a whole. Read more

Text for Linux users who just happen to be standing on their heads

Here’s one more really odd thing that you might consider doing when you’re finished setting up your 100+ new servers and troubleshooting problems that have stumped all the techies in the nearby vicinity – displaying text messages upside down. And if sheer entertainment is not enough of a reason, consider that the exercise might motivate you to think more deeply about the mysterious nature of character encoding systems. Yes, we’re going to turn phrases upside down -- not by flipping our monitors -- but by exchanging the usual characters that we see with their closest upside down equivalents – and then by presenting them on the screen in the reverse order. Read more

Discover in Plasma 5.7

Discover‘s future is Kirigami. We have already some work lined up (see the kirigami branch), we are pending some design work so that it shines, but the approach is already quite promising! Read more

Sirin Labs' Solarin is today's most ridiculous $16,000 Android phone

How much do you value your privacy? Sirin Labs is a new company making its debut in London today that stakes its future on very wealthy people believing their privacy and security to be priceless. Its launch product is the Solarin, a 5.5-inch Android smartphone accompanied by a series of bombastic claims about being the very best. It should be the very best, given that it costs £9,500 before taxes, but in my time trying it out today, I was left with the unhappy impression of an expensive imposter. Read more