Security flaw exposed in Linux kernel

— 5:04 AM on December 4, 2003

TR reader and forum regular technophile sent in a link to this story over at eWeek detailing a security flaw in the Linux kernel that allows a user to gain root access to a machine. Since the flaw is in the kernel itself, specifically versions 2.4 to 2.5.69, many distributions are affected.

Because the vulnerability requires local user access to a machine, it's not nearly as serious as an exploit that would allow a hacker to remotely attack an otherwise secure system. However, the flaw is already responsible for compromising several the Debian Project's servers, so it shouldn't be taken lightly. According to the eWeek report, MandrakeSoft, Slackware Linux, and others have already released new fixes for the exploit.

Like what we're doing? Pay what you want to support TR and get nifty extra features.
Top contributors
1. BIF - $340 2. Ryu Connor - $250 3. mbutrovich - $250
4. YetAnotherGeek2 - $200 5. End User - $150 6. Captain Ned - $100
7. Anonymous Gerbil - $100 8. Bill Door - $100 9. ericfulmer - $100
10. dkanter - $100
Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.