Language Selection

English French German Italian Portuguese Spanish

Linux Kernel Multiple Vulnerabilities

Filed under
Security has published "some vulnerabilities have been reported in the Linux kernel. One has an unknown impact, and the others can be exploited to cause a DoS (Denial of Service) and potentially compromise a vulnerable system."

Most if not all these obscure vulnerabilities have been addressed in the latest kernel update, citing the 2.6.12-rc1 changelog.

Published findings include:

1) An error exists in ROSE due to missing verification of the ndigis argument of new routes.

2) Any user with permissions to access a SCSI tape device can send some commands, which may cause it to become unusable for other users.

3) Some unspecified errors have been reported in the ISO9660 filesystem handler including Rock Ridge and Juliet extensions. These can be exploited via a specially crafted filesystem to cause a DoS or potentially corrupt memory leading to execution of arbitrary code.


More in Tux Machines

Tool That Lets You Install Ubuntu Touch on Your Mobile Device Now Supports Maru

It's been a little over a week since we told you all about Marius Quabeck's awesome new tool that lets you easily install the Ubuntu Touch mobile operating system on your device, and it looks like the developer was quite busy adding new functionality. Read more

3 open source time management tools

For many people, one of the reasons they cite for using a Linux-based operating system is productivity. If you're a power user who has tweaked your system just to your liking, and particularly if you adept at the command line, chances are you've realized significant gains in productivity. But do you have to be an extreme power user to make use of open source software's ability to boost your productivity? Absolutely not! Read more

An introduction to Mozilla's Secure Open Source Fund

Thanks Mark. Mozilla is a unique institution—it's both a nonprofit mission-driven organization and a technology industry corporation. We build open source software (most notably the Firefox Web browser) and we are champions for the open Internet in technical and political fora. We've been a global leader on well-known policy issues like privacy and net neutrality, and we're also very active on most of today's big topics including copyright reform, encryption, and software vulnerabilities. Read more

Ubuntu Snappy Core 16 Up to Release Candidate State, Raspberry Pi 3 Image Is Out

This past weekend, Ubuntu Snappy developer Michael Vogt announced the availability of the Release Candidate (RC) development milestone of the upcoming Ubuntu Snappy Core 16 operating system. Read more