LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 12-08-2010, 01:35 PM   #1
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 379Reputation: 379Reputation: 379Reputation: 379
Exclamation New Local Linux Kernel Root Exploit Published


Quote:
An interesting exploit for the Linux kernel that enables an attacker to escalate his privileges on a local machine has popped up on the Full Disclosure mailing list. The exploit chains together three separate bugs to get root on a vulnerable machine.

The exploit was posted Tuesday by Dan Rosenberg on Full Disclosure and he explains in his post that the exploit is specifically designed to be somewhat limited so that it's not easily usable by low-level attackers.
Complete Article
 
Old 12-16-2010, 06:21 PM   #2
silvyus_06
Member
 
Registered: Oct 2010
Distribution: Ubuntu 10.04 , Linux Mint Debian Edition , Microsoft Windows 7
Posts: 390

Rep: Reputation: 50
oh. nice. but out of 3 of those bugs 2 have been patched as far as i understand ...
so how is he gonna be able to get root access without 2 of the 3 bugs this exploit or wahtever it is is based on > ?
yup.he isn't gonna do anything . that's why i like linux .
 
Old 12-23-2010, 01:58 AM   #3
Jack Sparrow
LQ Newbie
 
Registered: Dec 2010
Posts: 8

Rep: Reputation: 1
Again, it was patched by either debian and ubuntu and spread to the other. When there are a zillion eyes looking a the code all who have a vested stake in its security, there is security.

hence how open source takes bugs, security and elevates them to an unprecedented reaction time to fixing problems and creating solutions. There is also a culture of openness where software writers can acknowledge bugs, warn users, and mitigate damage.

If this was a closed source operating system, it'd be at least 6 months from leak to fix, and thats not counting denails, coverups, and shuffling under the rug.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] linux kernel: 64-bit Compatibility Mode vulns (local root exploit) ponce Slackware 38 09-24-2010 12:49 PM
LXer: Root exploit for Linux kernel published LXer Syndicated Linux News 0 07-17-2009 07:30 PM
LXer: Kernel Update to Fix Local Root Exploit LXer Syndicated Linux News 0 02-13-2008 06:10 PM
Linux Kernel 2.6 Local Root Exploit by vmsplice? Inuit-Uprising Slackware 9 02-13-2008 09:41 AM
i need PATCH that protect against local root exploit for kernel 2.2.19 Slackware veenrak Linux - Security 2 10-09-2002 09:23 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:58 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration