---

Linux Root Access Vulnerabilities

[ Thanks to Caitlyn Martin (not the
author)
for this link. ]

“US-CERT is aware of public reports of multiple
vulnerabilities affecting Linux. Exploitation of these
vulnerabilities may allow an attacker to access the system with
root or “superuser” privileges.

“The first of these vulnerabilities is due to a flaw in the
implementation of the Reliable Datagram Sockets (RDS) protocol in
Linux kernel versions 2.6.30 through 2.6.36-rc8. By sending a
specially crafted socket function call, an attacker may be able to
write arbitrary values into kernel memory and escalate privileges
to root.”


Complete Story