Language Selection

English French German Italian Portuguese Spanish

Major Linux security hole found

Filed under
Linux
Security

Security, the experts like to tell us, is a process, not a product.

With open source that can be a very good thing since when security problems are found they can be fixed quickly. That's the case over this last weekend, Feb. 9-10, when a security problem was found, and given a hot fix, in the 2.6.17 to the most recent production Linux kernel, 2.6.24.1.

The problem's exploit was first shown on the security site Milw0rm. The specific trouble is with the kernel system call sys_vmsplice. There is no perfect patch for the problem at this time. There is, however, a hot fix, which prevents if from being exploited in at least some systems.

More Here

Also:

There has been a set of stable kernel releases (2.6.22.18, 2.6.23.16, and 2.6.24.2), all of which fix the recently disclosed splice() security hole. This vulnerability is an easy root exploit on any of the affected systems (almost every kernel from 2.6.17 on), so applying the fix would be a good thing to do.

Stable and unstable kernel releases




More in Tux Machines

Tanglu 4 "Dasyatis Kuhlii" Enters Beta, Ships with Linux Kernel 4.6 & GNOME 3.20

Matthias Klumpp informs the community about the availability of the first Beta build towards the Tanglu 4 "Dasyatis Kuhlii" GNU/Linux operating system, due for release later this year. Tanglu 4 "Dasyatis Kuhlii" Beta is distributed with the usual flavors, including with the KDE and GNOME desktop environments. A Core edition is available as well, designed for those who want to build their own Tanglu-based GNU/Linux distribution. Under the hood, all Tanglu 4 Beta editions are powered by a kernel from the Linux 4.6 series, along with the systemd 229 init system, but each one incorporates some of the latest open-source technologies that correspond to their user base. Read more

Parabola GNU/Linux New install medium 2016.07.27

Dual architecture (i686 and x86_64): Main ISO - Live ISO image for installation and recovery. MATE desktop ISO - Live ISO image for installation and recovery (with MATE Desktop Environment). TalkingParabola ISO - Live ISO image for installation and recovery (adapted for blind and visually impaired users) Read more

Linux Graphics

Games for GNU/Linux