Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - News > Syndicated Linux News
User Name
Syndicated Linux News This forum is for the discussion of Syndicated Linux News stories.


  Search this Thread
Old 05-05-2009, 09:31 PM   #1
LXer NewsBot
Registered: Dec 2005
Posts: 107,402

Rep: Reputation: 117Reputation: 117
LXer: This week at LWN: A privilege escalation flaw in udev

Published at LXer:

A vulnerability in udev, the user-space tool that manages the Linux /dev tree, has left unpatched systems vulnerable to a local root privilege escalation. Exploits are already circulating on the full-disclosure mailing list, so it is rather important for users and administrators to update their systems. The problem was caused by the way udev processes the messages it receivesócertain kinds of messages, which could be generated by user processes, were not considered. That oversight led to the vulnerability.



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Intel CPU Privilege Escalation Exploit H_TeXMeX_H Linux - Security 4 04-22-2009 04:57 PM
LXer: This week at LWN: Details of the DNS flaw revealed LXer Syndicated Linux News 0 08-27-2008 06:40 AM
LXer: This week at LWN: Udev rules and the management of the plumbing layer LXer Syndicated Linux News 0 08-25-2008 04:10 AM
Linux Privilege Escalation The.Hammer.911 Linux - Security 1 05-10-2007 07:07 PM
LXer: Postgresql Privilege Escalation and Denial of Service ... LXer Syndicated Linux News 0 02-16-2006 03:01 AM > Forums > Linux Forums > Linux - News > Syndicated Linux News

All times are GMT -5. The time now is 07:35 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration