Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

Malware devs embrace open-source

A tale of two distros: Ubuntu and Linux Mint

Raspberry Pi benchmarked against Beagleboard, low price is long term

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:eWeek: Researchers Find Serious Vulnerability in Linux Kernel
eWeek: Researchers Find Serious Vulnerability in Linux Kernel
Dec 2, 2003, 02 :28 UTC (13 Talkback[s]) (11000 reads)
(Other stories by Dennis Fisher)

[ Thanks to David for this link. ]

"Security professionals took note of a critical new vulnerability in the Linux kernel that could enable an attacker to gain root access to a vulnerable machine and take complete control of it. An unknown cracker recently used this weakness to compromise several of the Debian Project's servers, which led to the discovery of the new vulnerability.

"This discovery has broad implications for the Linux community. Because the flaw is in the Linux kernel itself, the problem affects virtually every distribution of the operating system and several vendors have confirmed that their products are vulnerable. The vulnerability is in all releases of the kernel from Version 2.4.0 through 2.5.69, but has been fixed in Releases 2.4.23-pre7 and 2.6.0-test6..."

Complete Story

Related Story:
Debian Project Reports Some Servers Compromised(Nov 21, 2003)


Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat  
  Talkback(s) Name  and Date
It was discovered in September by Andrew ...   it's not new   
wildpossum
Dec 2, 2003, 03:33:28  
An unknown cracker recently used this we ...   Didn't just discover it....   
Chris
Dec 2, 2003, 03:53:55  
It should be noted this is only a locl e ...   kernel vulnerability   
Kevin McKay
Dec 2, 2003, 04:12:16  
"Symantec warned that the new flaw could ...   Much ado...   
anon
Dec 2, 2003, 05:08:39  
So what? ...   They still will find vulnerabilities tomorrow and   
R.L.
Dec 2, 2003, 10:10:51  
What about older kernels (2.2)? ...   The Question nobody seems to ask   
Raimund Bauer
Dec 2, 2003, 11:33:37  
I recently came to the conclusion that g ...   OpenBSD security strategie might be the answer   
Dom
Dec 2, 2003, 13:31:43  
The problem does reside where applicatio ...   The problem lies with the security strategy OpenBS   
Dom
Dec 2, 2003, 13:40:58  
I am not a kernel hacker, but logic agre ...   Re: The problem lies with the security strategy Op   
Tony OBryan
Dec 2, 2003, 14:58:10  
Doesn't SELinux (Security Enhanced L ...   Re: OpenBSD security strategie might be the answer   
C. Whitman
Dec 2, 2003, 15:00:05  
2.2 kernels are fine--which saves me a l ...   2.2 Kernels are A OK   
Steven J. Vaughan-Nichols
Dec 2, 2003, 16:30:44  
There was an architecture created more t ...   Re: The problem lies with the security strategy Op   
PME
Dec 2, 2003, 19:23:02  
The 2.2 series kernels may be unaffected ...   Re: 2.2 Kernels are A OK   
James Cornell
Dec 4, 2003, 04:13:06  
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP