Multiple flaws reported in Linux

February 13 2008

Multiple flaws reported in Linux

The flaws, as reported by Linux vulnerability researcher Jens Axboe on Wednesday, affect versions of Ubuntu, Suse, Red Hat, Mandrake, Debian and iterations of the Linux kernel up to, but not including, Linux 2.6.24.1.

The most serious flaw is a memory-access vulnerability. Rated as "high" severity (the second highest rating) by the US National Vulnerability Database, the memory-access validation flaw allows a local attacker to gain root administrator privileges via "crafted arguments in a vmsplice system call".

Exploit code for this vulnerability is available online.

Security site SecurityFocus has provided links to patches for these vulnerabilities.

Reproduced from an article published by ZDNet UK
© ZDNet UK

The original article can be viewed here:
http://news.zdnet.co.uk/security/0,1000000189,39292825,00.htm

Permalink Bookmark Digg this story

| About RSS feeds

Get the Industry's top stories delivered straight to your inbox...

Disclaimer
By submitting these details you agree to our website terms of use.

Global Secure Systems - Multiple flaws reported in Linux

Affiliated Sites and Services

Search

Multiple flaws reported in Linux

The flaws, as reported by Linux vulnerability researcher Jens Axboe on Wednesday, affect versions of Ubuntu, Suse, Red Hat, Mandrake, Debian and iterations of the Linux kernel up to, but not including, Linux 2.6.24.1.