Critical Vulnerability Silently Patched in Linux Kernel
Aug 18, 2010, 21:47 (1 Talkback[s])
(Other stories by Lucian Constantin)
"A highly dangerous privilege escalation vulnerability, which
can allow an attacker to execute arbitrary code as root from any
GUI application, has been patched in the Linux kernel.
"The flaw was discovered by Rafal Wojtczuk, principal researcher
at Invisible Things Lab (ITL), a security research company based in
Poland.
"According to Joanna Rutkowska, founder of ITL, the bug was
discovered while Mr. Wojtczuk was working on GUI virtualization in
Qubes OS, an operating system developed by the company, in which
every application runs in a separate virtual machine."
Complete Story
Related Stories:
- Protect Linux Against Overflow Exploits(Aug 05, 2010)
- Pressure mounts for a swifter response to vulnerabilities(Aug 04, 2010)
- Google fixes critical vulnerabilities in Chrome 5(Jul 27, 2010)
- Rebooting Responsible Disclosure: a focus on protecting end users(Jul 22, 2010)
- h4x0r3d No More(Jul 06, 2010)
- Update: Attackers exploit critical bug in Adobe's Flash, Reader(Jun 07, 2010)
- Metasploit Goes Commercial in New Express Edition(Apr 23, 2010)
- Pwn2Own 2010: interview with Charlie Miller(Mar 26, 2010)
- Firefox critical flaw admitted by Mozilla(Mar 22, 2010)
