Kernel security flaw??
JosephK
joseph at oxtedonline.net
Sun Feb 24 22:15:50 UTC 2008
On 16:47 Sun 24 Feb , geoffrey froner wrote:
> I saw the following report at the Gentoo site. Not being an expert with
> Linux, I am at a loss to understand the impact. Is this something Ubuntu
> users need be concerned? Is there already a patch for this problem?
>
> "Two *major security flaws in the Linux kernel* were reported last weekend.
> Both flaws have the same impact (*root access for local users*) and both
> exist within the vmsplice() system call, which was added to the kernel in
> 2.6.17. There is no configuration option to exclude vmsplice() so *everyone
> is vulnerable."
>
This may be of interest
http://distrowatch.com/weekly.php?issue=20080218#feature
--
Regards, Joe
More information about the ubuntu-users
mailing list