http://www.us-cert.gov/current/index.ht ... rabilities (added October 25, 2010 at 10:31 am)
For the first vulnerability you have to/can type in a single command as root in a terminal session to do away with this vulnerability until "your distro of choice" puts out a patched kernel. But for the second vulnerability "patches have not yet been released to address this issue."
Info Security: Linux Kernel Root Access Vulnerabilities
Forum rules
Do not post support questions here. Before you post read the forum rules. Topics in this forum are automatically closed 30 days after creation.
Do not post support questions here. Before you post read the forum rules. Topics in this forum are automatically closed 30 days after creation.
-
linuxviolin
- Level 8
- Posts: 2081
- Joined: Tue Feb 27, 2007 6:55 pm
- Location: France
Info Security: Linux Kernel Root Access Vulnerabilities
Last edited by LockBot on Wed Dec 07, 2022 4:01 am, edited 1 time in total.
Reason: Topic automatically closed 30 days after creation. New replies are no longer allowed.
Reason: Topic automatically closed 30 days after creation. New replies are no longer allowed.
K.I.S.S. ===> "Keep It Simple, Stupid"
"Simplicity is the ultimate sophistication." (Leonardo da Vinci)
"Everything should be made as simple as possible, but no simpler." (Albert Einstein)
"Simplicity is the ultimate sophistication." (Leonardo da Vinci)
"Everything should be made as simple as possible, but no simpler." (Albert Einstein)
-
DrHu
Re: Info Security: Linux Kernel Root Access Vulnerabilities
Posiblty the first fix, prevent rds module from loading will be enough, since apart from local users, there willneed to be a remote connection exploit to allow access to the system
- Enabling some gnu c library changes, the seond vulnerability