Short bio: Computer Scientist, FOSS supporter (read more)
Tux Machines (TM)-specific
Not to defend Microsoft, as kernel exploits that provide privileged access are terrible flaws, but we had an interesting discussion in the talkbacks where several people acted as if Microsoft was the only place that could’ve made such mistakes. Well, this is a common flaw across operating systems that is difficult to catch due to the complexities of kernel code.
Dann Frazier of Debian posted to Full Disclosure today about four vulnerabilities that allow local attacks against the kernel that result in arbitrary code execution or Denial of Service conditions. The contents of his email are posted below: