Linux vendors rush to patch privilege escalation flaw after root exploits emerge

[ Thanks to Amy Bennett for this link. ]

Linux vendors are rushing to patch a privilege escalation vulnerability in the Linux kernel that can be exploited by local attackers to gain root access on the system.

The vulnerability, which is identified as CVE-2012-0056, was discovered by Jüri Aedla and is caused by a failure of the Linux kernel to properly restrict access to the "/proc//mem" file.

Complete Story

Related Stories:

• Kernel Vulnerability in Ubuntu 11.10. Upgrade Now!(Nov 22, 2011)
• Linux Kernel Vulnerability Affects Ubuntu 11.10 OMAP4(Nov 21, 2011)
• Linux Users Face Risk From Kernel Vulnerability (Aug 19, 2010)