LXer: This week at LWN: A privilege escalation flaw in udev
Published at LXer:
A vulnerability in udev, the user-space tool that manages the Linux /dev tree, has left unpatched systems vulnerable to a local root privilege escalation. Exploits are already circulating on the full-disclosure mailing list, so it is rather important for users and administrators to update their systems. The problem was caused by the way udev processes the messages it receivesócertain kinds of messages, which could be generated by user processes, were not considered. That oversight led to the vulnerability.
|All times are GMT -5. The time now is 10:56 PM.|