LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Closed Thread
  Search this Thread
Old 10-11-2017, 11:18 AM   #1
ravipradeep
LQ Newbie
 
Registered: Oct 2017
Posts: 7

Rep: Reputation: Disabled
A vulnerability in the way


A vulnerability in the way the Linux kernel loads ELF files could lead to memory corruption and local privilege elevation. The flaw dates back to 2015, but was only recently classified as a vulnerability.

Read more in:
- [link to the register magazine removed] Patch alert! Easy-to-exploit flaw in Linux kernel rated 'high risk'
- [link to the bleeping computer magazine removed] Linux Kernel Bug Reclassified as Security Issue After Two Years

Last edited by rtmistler; 10-11-2017 at 11:28 AM. Reason: Links not matching OP's cited points
 
Old 10-11-2017, 11:27 AM   #2
rtmistler
Moderator
 
Registered: Mar 2011
Location: USA
Distribution: MINT Debian, Angstrom, SUSE, Ubuntu, Debian
Posts: 9,316
Blog Entries: 13

Rep: Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372
Neither of those links leads to the topics you're citing. However they seem to be technical magazines.

Please update correctly.
 
Old 10-11-2017, 11:45 AM   #3
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 23,811

Rep: Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974
Quote:
Originally Posted by ravipradeep View Post
A vulnerability in the way the Linux kernel loads ELF files could lead to memory corruption and local privilege elevation. The flaw dates back to 2015, but was only recently classified as a vulnerability.

Read more in:
- [link to the register magazine removed] Patch alert! Easy-to-exploit flaw in Linux kernel rated 'high risk'
- [link to the bleeping computer magazine removed] Linux Kernel Bug Reclassified as Security Issue After Two Years
And both articles (found via Google search), indicate it was fixed in kernel 4.0, and some long-term distros (Red Hat, CentOS, Debian), have already released patches for the 3.x kernel issue.

So is there a particular point in posting these links, ravipradeep?
 
1 members found this post helpful.
Old 10-11-2017, 11:49 AM   #4
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: distro hopper
Posts: 9,984

Rep: Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570Reputation: 4570
The entire post top post was lifted from here:

https://www.sans.org/newsletters/newsbites/xix/77#300
 
Old 10-11-2017, 11:59 AM   #5
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 23,811

Rep: Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974Reputation: 6974
Quote:
Originally Posted by dugan View Post
The entire post top post was lifted from here:
https://www.sans.org/newsletters/newsbites/xix/77#300
Nice...good catch! Wonder who the next winner is going to be on "Spot the spammer!"?
 
Old 10-11-2017, 12:16 PM   #6
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,141
Blog Entries: 4

Rep: Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227Reputation: 3227
Carnegie-Mellon University hosts an official site that is specifically concerned with computer vulnerabilities:

http://cert.org

This (among others) is an authoritative reference to public software vulnerabilities and their patch status.
 
Old 10-11-2017, 12:23 PM   #7
rtmistler
Moderator
 
Registered: Mar 2011
Location: USA
Distribution: MINT Debian, Angstrom, SUSE, Ubuntu, Debian
Posts: 9,316
Blog Entries: 13

Rep: Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372Reputation: 4372
Closed as spam or at least copycat post.
 
1 members found this post helpful.
  


Closed Thread


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
any comments coolb General 1 10-13-2007 02:47 PM
Your Comments, Please !! cousinlucky General 6 01-21-2006 08:28 PM
2.6.12 out, comments in :) xushi Slackware 107 07-12-2005 07:16 AM
I need your comments! gcclinux Linux - Games 1 11-02-2004 05:23 PM
Comments Please webboss Linux - General 2 11-15-2002 07:23 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 07:27 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration