Here's a couple of HOWTO's on kernel patching:

http://linux.about.com/library/bl/op...blnewbiea7.htm
http://linuxheadquarters.com/howto/t...nelpatch.shtml

You might want to either try to find a precompiled binary kernel for your distro, so that you don't have to compile the kernel source or just find the source for a non-vulnerable kernel and compile that without having to patch it. If you have questions about compiling or installing a new kernel, feel free to post them in the Linux-Newbie or Linux-General Forums.

If you're behind a decent firewall and only use your computer as a regular desktop, these security flaws aren't too important, are they?

It's a local root exploit, so the vulnerability cannot be remotely exploited. But if used in conjunction with an exploit that allows local access, you are done for (or if you already have other users). The recent compromises at debian and gentoo (which used a remote exploit followed by priviledge escalation similar to this one) are good examples of why these types of local root exploits are still extremely dangerous. I would highly recommended upgrading you kernel immediately. Don't let your firewall lull you into the false perception that you are not vulnerable. It certainly minimzes your risk, but you should still upgrade immediately.

hey leeach I love the quote. that is so true.

2.6.3 and later are uneffected by this bug correct. I'm new so I don't really understand what's going on yet. I'm learing more and more everyday.

I really am too lazy to fix this right now, I guess I'll just wait until the next kernel comes out, then work with that. I just got my nvidia drivers working, I don't really feel like messing around with that right now.... Thanks for the heads-up though.