Language Selection

English French German Italian Portuguese Spanish

Critical Linux vulnerability imperils users, even after “silent” fix

Filed under

For years, the Linux operating system has contained a high-severity vulnerability that gives untrusted users with restricted accounts nearly unfettered "root" access over machines, including servers running in shared Web hosting facilities and other sensitive environments. Surprisingly, most users remain wide open even now, more than a month after maintainers of the open-source OS quietly released an update that patched the gaping hole.

The severity of the bug, which resides in the Linux kernel's "perf," or performance counters subsystem, didn't become clear until Tuesday, when attack code exploiting the vulnerability became publicly available (note: some content on this site is not considered appropriate in many work environments). The new script can be used to take control of servers operated by many shared Web hosting providers, where dozens or hundreds of people have unprivileged accounts on the same machine.

rest here

More in Tux Machines

Development News

  • GCC Working On ARMv8.1, Clang Working On ARMv8.2 Support
    ARM's Matthew Wahab posted the new patch series yesterday, "ARMv8.1 includes an extension to ARM which adds two Adv.SIMD instructions, vqrdmlah and vqrdmlsh. This patch set adds support for ARMv8.1 and for the new instructions, enabling the architecture with --march=armv8.1-a. The new instructions are enabled when both ARMv8.1 and a suitable fpu options are set, for instance with -march=armv8.1-a -mfpu=neon-fp-armv8 -mfloat-abi=hard."
  • Forum PHP in Paris 2015
    First, a huge thanks to AFUP for the organization of this great event, as always, reception was beyond reproach.
  • PHP version 5.6.16
    RPM of PHP version 5.6.16 are available in remi repository for Fedora ≥ 21 and remi-php56 repository for Fedora ≤ 20 and Enterprise Linux (RHEL, CentOS).

Are Intel Skylake Graphics Any Faster With Linux 4.4?

Following the recent Mesa 11.2-devel Git tests on Skylake I also ran a comparison to see if the OpenGL performance differed at all when comparing Linux 4.3.0 to Linux 4.4 in its second release candidate form. From the Core i5 6600K "Skylake" system I ran some tests of the HD Graphics 530 to see if the performance was impacted at all by switching to the latest Linux kernel development code as of this week. Read more Also: How Nouveau Compares To NVIDIA's Linux Driver When Kepler Re-Clocking Works Features To Find With Mesa 11.1

Red Hat and Fedora

First Ubuntu Touch Images Based on Ubuntu 16.04 LTS (Xenial Xerus) Are Now Live

Just a few moments ago, we were notified by Łukasz Zemczak from Canonical about the latest work done by the Ubuntu Touch developers for the upcoming OTA-9 software update for Ubuntu Phones. Read more