Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

Malware devs embrace open-source

A tale of two distros: Ubuntu and Linux Mint

Raspberry Pi benchmarked against Beagleboard, low price is long term

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:SearchEnterpriseLinux: Serious Security Flaw Fixed in Linux Kernel
SearchEnterpriseLinux: Serious Security Flaw Fixed in Linux Kernel
Jan 7, 2004, 14 :00 UTC (0 Talkback[s]) (5611 reads)
(Other stories by Michael S. Mimoso)

"A new version of the 2.4 Linux kernel was released overnight that addresses a serious security hole that could enable any user to escalate his privileges on a machine and run code.

"The flaw lies in the memory management code in the mremap system call in versions up to and including 2.4.23. Mremap resizes and moves processes into virtual memory areas (VMAs). An incorrect bounds check could lead to a malicious VMA that could disrupt other areas of the kernel's memory management subroutines, according to an alert released by Polish research firm iSEC Security Research Inc.

"Researcher Paul Starzetz, who discovered the flaw, said his team concentrated on the 2.4 kernel, but he said it is possible the recently released 2.6 kernel is affected as well..."

Complete Story

Related Stories:
Red Hat Linux Advisory: kernel(Jan 05, 2004)
eWeek: Researchers Find Serious Vulnerability in Linux Kernel(Dec 02, 2003)



No talkbacks posted.
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP