LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Syndicated Linux News (http://www.linuxquestions.org/questions/syndicated-linux-news-67/)
-   -   LXer: This week at LWN: A privilege escalation flaw in udev (http://www.linuxquestions.org/questions/syndicated-linux-news-67/lxer-this-week-at-lwn-a-privilege-escalation-flaw-in-udev-724006/)

LXer 05-05-2009 09:31 PM

LXer: This week at LWN: A privilege escalation flaw in udev
 
Published at LXer:

A vulnerability in udev, the user-space tool that manages the Linux /dev tree, has left unpatched systems vulnerable to a local root privilege escalation. Exploits are already circulating on the full-disclosure mailing list, so it is rather important for users and administrators to update their systems. The problem was caused by the way udev processes the messages it receivesócertain kinds of messages, which could be generated by user processes, were not considered. That oversight led to the vulnerability.

Read More...


All times are GMT -5. The time now is 11:35 AM.