Language Selection

English French German Italian Portuguese Spanish

Quick Fix in Linux Kernel

Filed under
Linux

Just days after the much-anticipated Linux 2.6.12 kernel was officially released, an update has been issued to fix two security vulnerabilities.

Linux kernel developer Chris Wright announced the 2.6.12.1 security fix release late Wednesday.

One of the issues carries the CVE designation CAN-2005-1761 and was titled, "ia64 ptrace + sigrestore_context" in the Changelog for 2.6.12.1. According to Danish Research firm Secunia, the impact of this vulnerability is unknown.

The other fix is for an issue that is somewhat more dangerous and could lead to a Denial-of-Service (define) attack by a malicious user. The 2.6.12.1 changelog refers to the patch as "Clean up subthread exec" and refers to the CVE designation CAN-2005-1913.

An error had existed in the 2.6.12 kernel in the delivery of signals with a sub-thread "exec" on a pending timer.

"If subthread exec's with timer pending, signal is delivered to old group-leader and can panic kernel," the 2.6.12.1 changelog noted.

Causing a kernel to "panic" is a serious condition that in many cases causes a Linux system to shut down. According to security firm Secunia, the subthreat exec kernel panic issue could have been exploited by malicious, local users to cause a DoS attack.

The overall effect of the 2.6.12 flaws, however, is not likely to have a significant impact on Linux users. The 2.6.12 kernel was only officially released last Friday by Linux creator Linus Torvalds and has not made its way - yet -- into many Linux distributions.

The 2.6.12 Linux kernel introduces a number of new innovations to Linux including native support for Xen as well as SELinux.

Source.

More in Tux Machines

Alpine 3.4.0 released

We are pleased to announce Alpine Linux 3.4.0, the first release in v3.4 stable series. Read more

Meet Manjaro Linux Gaming 16.06 — An Arch Linux-based Linux Distro For Gamers

It’s time to meet Manjaro Linux Gaming, an Arch Linux-based operating system that’s designed for gaming. This Linux distro comes with many open source software and emulators to assist you in gaming. The overall settings of the OS have been adjusted to suit the needs of gamers. Read more

Leftovers: Gaming

Leftovers: Software

  • Phoronix Test Suite 6.4 M4 Brings Suite Editing To The Phoromatic Server
  • TOR Browser 6.0 Released With Better HTML5 Support And Improved Security
    TOR Browser 6.0 has been released with multiple changes and improvements.
  • Top 5 Screen cast Softwares for Linux
    A Screen cast software(screen recorder) is the recording of computer screen, also known as a screen capture with audio. we can also hear a regular word screenshot, the difference between screenshot and screen cast is the screenshot generates a single picture of a computer screen but, where as screen cast records all the user activities on screen with audio narration like movie it would be saved as in video format. the video is in sevaral formats like flv,mp4,avi etc..
  • Calamares 2.2.3 Universal Installer Adds Locale Choice Support on Debian Linux
    Today, May 30, 2016, the development team behind Calamares, the next-generation, distribution-independent graphical installer framework announced the release of Calamares 2.2.3.
  • Back to Backups
    The most encouraging part about getting followup e-mail messages from readers about their backup solutions is to hear that lots of folks actually have backup solutions! Regardless of the complexity of your backup process or the level of automation you deem appropriate for your data, apart from creating the memories in the first place, few things are as important as backing them up!