Language Selection

English French German Italian Portuguese Spanish

Linux Kernel Console Keyboard Mapping Vulnerability

Filed under
Linux

Rudolf Polzer has reported a vulnerability in the Linux Kernel, which potentially can be exploited by malicious, local users to gain escalated privileges.

The vulnerability is caused due to the way console keyboard mapping is handled. Successful exploitation allows malicious console users to inject arbitrary shell commands into certain key mappings.

The vulnerability has been reported in Kernel 2.6. Other versions may also be affected.

Full Advisory.

More in Tux Machines

Today in Techrights

FreeBSD-Based TrueOS Operating System Gets New Jail Tools, Automounting Feature

The developers of the FreeBSD-based TrueOS operating system (formerly PC-BSD) announced the release and general availability of a new stable build versioned 2017-02-22. Read more

Calamares 3.1 Distribution-Independent Linux Installer Officially Released

The Calamares open-source universal installer framework for Linux-based operating systems has been updated recently to version 3.1, a major release the users of the KaOS GNU/Linux distribution can already enjoy if they download the latest ISO snapshot. Read more

Reiser4 Updated For The Linux 4.10 Kernel

The out-of-tree Reiser4 file-system has been updated for the Linux 4.10 kernel. Reiser4 for the Linux 4.10.0 kernel is available as of earlier this week, managing to release their updated file-system driver code quite promptly. This port to Linux 4.10 yielded a few changes to the Reiser4 code as they re-based to this Linux kernel with the ->readlink() of inode operations being removed as well as the WRITE_FLUSH_FUA flag being removed. Read more