Language Selection

English French German Italian Portuguese Spanish

Linux Vendors Rush to Patch Privilege Escalation Flaw After Root Exploits Emerge

Filed under
Linux

Linux vendors are rushing to patch a privilege escalation vulnerability in the Linux kernel that can be exploited by local attackers to gain root access on the system.

The vulnerability, which is identified as CVE-2012-0056, was discovered by Jüri Aedla and is caused by a failure of the Linux kernel to properly restrict access to the "/proc/
/mem" file.

Linus Torvalds submitted a patch on the official Linux kernel repository on Jan. 17, but before Linux vendors had a chance to apply it for their distributions, proof-of-concept exploit code already appeared online.

rest here




More in Tux Machines

GNOME and KDE

  • Community Time at Collabora [Ed: Mono]
  • Refocus
    Sometimes all those GNOME programming projects are driving me crazy. [...] Note that for that last item, I would use LaTeXila of course, so if there are some regressions due to some library changes (you perfectly know which library in particular I mean), I’ll probably become aware of the regressions and fix them. Without any guarantees, I repeat. So if someone wants to take over LaTeXila maintenance, I would be more than happy. In the condition that I can still recognize my old pet project afterwards and is still mostly bug-free.
  • Chakra GNU/Linux Users Get KDE Plasma 5.5.4 and Calligra 2.9.11 Office Suite
    Users of the Chakra GNU/Linux operating system were informed this past weekend by the project's maintainer Neofytos Kolokotronis of the availability of two essential software distributions for the rolling OS.
  • Konqi emoji shipped! and a little preview…
    It will end up in your KDE distribution soon !!! I am really very happy that many of you have appreciated my work.

Leftovers: Gaming

today's howtos

Kernel Space: Linux, Graphics