Language Selection

English French German Italian Portuguese Spanish

Bug exposes eight years of Linux kernel

Filed under

Linux developers have issued a critical update for the open-source OS after researchers uncovered a vulnerability in its kernel that puts most versions built in the past eight years at risk of complete takeover.

The bug involves the way kernel-level routines such as sock_sendpage react when they are left unimplemented. Instead of linking to a corresponding placeholder, (for example, sock_no_accept), the function pointer is left uninitialized. Sock_sendpage doesn't always validate the pointer before dereferencing it, leaving the OS open to local privilege escalation that can completely compromise the underlying machine.

"Since it leads to the kernel executing code at NULL, the vulnerability is as trivial as it can get to exploit," security researcher Julien Tinnes writes here. "An attacker can just put code in the first page that will get executed with kernel privileges."

rest here

More in Tux Machines

A decade of Linux patent non-aggression: The Open Invention Network

One reason why Linux weathered patent attacks and trolls to become today's dominant server and cloud operating system is because the Open Invention Network united its supporters into a strong patent consortium. Read more

Today in Techrights

Ubuntu Touch to Get Updated Android Drivers and Kernel

The Ubuntu Touch platform is still using some Android bits and it looks like the developers are preparing to upgrade those components as well in the coming months. Read more

Real Time Linux becomes a Linux Foundation Collaborative Project

With this project, the Linux Foundation is getting another fellow: Thomas Gleixner, the long time maintainer of RTLinux, who would join the ranks of Linus Torvalds and Greg KH. Linux Foundation sponsors the work of fellows so they don't have to worry about finding 'jobs' and can keep their focus on their projects. Read more