Language Selection

English French German Italian Portuguese Spanish

Bug exposes eight years of Linux kernel

Filed under
Linux
Security

Linux developers have issued a critical update for the open-source OS after researchers uncovered a vulnerability in its kernel that puts most versions built in the past eight years at risk of complete takeover.

The bug involves the way kernel-level routines such as sock_sendpage react when they are left unimplemented. Instead of linking to a corresponding placeholder, (for example, sock_no_accept), the function pointer is left uninitialized. Sock_sendpage doesn't always validate the pointer before dereferencing it, leaving the OS open to local privilege escalation that can completely compromise the underlying machine.

"Since it leads to the kernel executing code at NULL, the vulnerability is as trivial as it can get to exploit," security researcher Julien Tinnes writes here. "An attacker can just put code in the first page that will get executed with kernel privileges."

rest here




More in Tux Machines

Ubuntu Touch OTA-4 Update to Let Users Import SIM Contacts

A fresh OTA update is being prepared for Ubuntu Touch, and it should land soon. Developers have released some of the most important improvements that will be implemented in the upcoming release. Read more

Fedora Tools

  • Future Plans For Changing Fedora's Installer
    Over the last couple weeks there has been an "Anaconda Wishlist" thread occurring on Fedora's desktop mailing list. The thread, and the associated Workstation Working Group meeting, are directed at the future of the Fedora Anaconda Installer.
  • Tweak Your Fedora 22 Desktop Using Fedy And PostinstallerF
    None of the Linux distributions comes with all essential applications for daily usage, Agree? You have to install additional Repositories, softwares like Chrome, Flash player, Java or something in order to get a perfect distro for the daily usage. We can do it in two methods. First, you can manually search and install all the required softwares one by one, and the second one is you can use a tool that will help you to find and install all essential applications from one place. Which method would you prefer? I prefer the second method most, not because it is easy, but also it saves some time.
  • 27 ‘DNF’ (Fork of Yum) Commands for RPM Package Management in Linux

Red Hat CEO: Public cloud "obscenely expensive at scale"

Whitehurst believes Amazon Web Services (AWS) makes sense for test and dev, but it can't compete with private cloud at scale. Do you agree? Read more Also:

Intel Gets 'Clear' About Linux and Containers

Imad Sousou, VP in Intel's Software and Services Group and GM of the Intel Open Source Technology Center, discusses the Clear Linux and Clear container efforts. Read more