Found, NSA backdoor into Linux Kernel
Forum rules
Before you post read how to get help. Topics in this forum are automatically closed 6 months after creation.
Before you post read how to get help. Topics in this forum are automatically closed 6 months after creation.
Found, NSA backdoor into Linux Kernel
Is 3.16.0-38 affected?
BS or real??? ----- http://www.wired.com/2016/01/hack-brief ... linux-bug/
Hack Brief: Years-Old Linux Bug Exposes Millions of Devices
An Israeli security research firm has come forward with a troubling discovery. A zero-day vulnerability in the Linux kernel has left “tens of millions” of Linux PCs and servers exposed, along with 66 percent of Android phones and tablets. And it’s been there for nearly three years.
The Hack
In a blog post detailing the issue, Perception Point researchers say that problem stems from the Linux keyring facility, essentially a locker where apps can stash authentication and encryption keys, security data, and other sensitive info. The bug, outlined in more depth here but described as “fairly straightforward,” can ultimately allow an attacker to pose as a local user and gain root access to a device.
Who’s Affected?
In addition to the “tens of millions” of Linux PCs and servers running Linux Kernel version 3.8 and higher, because Android shares some code with Linux, the vulnerability affects any Android device running version 4.4 or later. As of January 4, that adds up to 69.4 percent of all Android devices, even more than the researchers estimated. Basically, if you’ve bought or upgraded your Android device within the last two years or so, that device is vulnerable.
BS or real??? ----- http://www.wired.com/2016/01/hack-brief ... linux-bug/
Hack Brief: Years-Old Linux Bug Exposes Millions of Devices
An Israeli security research firm has come forward with a troubling discovery. A zero-day vulnerability in the Linux kernel has left “tens of millions” of Linux PCs and servers exposed, along with 66 percent of Android phones and tablets. And it’s been there for nearly three years.
The Hack
In a blog post detailing the issue, Perception Point researchers say that problem stems from the Linux keyring facility, essentially a locker where apps can stash authentication and encryption keys, security data, and other sensitive info. The bug, outlined in more depth here but described as “fairly straightforward,” can ultimately allow an attacker to pose as a local user and gain root access to a device.
Who’s Affected?
In addition to the “tens of millions” of Linux PCs and servers running Linux Kernel version 3.8 and higher, because Android shares some code with Linux, the vulnerability affects any Android device running version 4.4 or later. As of January 4, that adds up to 69.4 percent of all Android devices, even more than the researchers estimated. Basically, if you’ve bought or upgraded your Android device within the last two years or so, that device is vulnerable.
Last edited by LockBot on Wed Dec 28, 2022 7:16 am, edited 1 time in total.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Re: Found, NSA backdoor into Linux Kernel
I know the NSA helped create android; it's in the documentation for the android sdk. Android runs on a linux kernel. I don't know anything beyond that. Wouldn't surprise me, but I hope it's false, and if it is true, then I hope Linus Torvalds does something about it. I don't know if Linus still manages the kernel development, but if he does, then I don't know how he wouldn't have known about this.
- Pjotr
- Level 24
- Posts: 20133
- Joined: Mon Mar 07, 2011 10:18 am
- Location: The Netherlands (Holland) 🇳🇱
- Contact:
Re: Found, NSA backdoor into Linux Kernel
Where does the NSA come in?
Anyway, upgrade your kernel to the latest witin its series and you should be fine.
Anyway, upgrade your kernel to the latest witin its series and you should be fine.
Tip: 10 things to do after installing Linux Mint 21.3 Virginia
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
- z31fanatic
- Level 5
- Posts: 890
- Joined: Sat Feb 14, 2015 5:25 pm
- Location: Pennsylvania
Re: Found, NSA backdoor into Linux Kernel
You don't mess you with America, we'll always know where you are and what you do.
Re: Found, NSA backdoor into Linux Kernel
otacon14112 wrote:I know the NSA helped create android; it's in the documentation for the android sdk. Android runs on a linux kernel. I don't know anything beyond that. Wouldn't surprise me, but I hope it's false, and if it is true, then I hope Linus Torvalds does something about it. I don't know if Linus still manages the kernel development, but if he does, then I don't know how he wouldn't have known about this.
Linus Torvalds was quoted as saying the NSA came knocking at his door and wanted him to backdoor a bug into linux. He didnt say if he did or didnt.
Re: Found, NSA backdoor into Linux Kernel
It affects kernel 3.8 and HIGHER, below is safe???Pjotr wrote:Where does the NSA come in?
Anyway, upgrade your kernel to the latest witin its series and you should be fine.
- Pjotr
- Level 24
- Posts: 20133
- Joined: Mon Mar 07, 2011 10:18 am
- Location: The Netherlands (Holland) 🇳🇱
- Contact:
Re: Found, NSA backdoor into Linux Kernel
See: http://www.cyberciti.biz/faq/linux-cve- ... ility-fix/NSA_Dontspyoneme wrote:It affects kernel 3.8 and HIGHER, below is safe???Pjotr wrote:Where does the NSA come in?
Anyway, upgrade your kernel to the latest witin its series and you should be fine.
So for the 3.13 kernel series, the 3.13.0-76 already contains the fix. The other kernel series (3.16, 3.19 and 4.2) probably also contain it in their latest versions. The response of the devs to things like this, is usually very fast.
Tip: 10 things to do after installing Linux Mint 21.3 Virginia
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
Re: Found, NSA backdoor into Linux Kernel
Interesting, do you have a source for that?NSA_Dontspyoneme wrote:Linus Torvalds was quoted as saying the NSA came knocking at his door and wanted him to backdoor a bug into linux. He didnt say if he did or didnt.
If your issue is solved, kindly indicate that by editing the first post in the topic, and adding [SOLVED] to the title. Thanks!
- Pjotr
- Level 24
- Posts: 20133
- Joined: Mon Mar 07, 2011 10:18 am
- Location: The Netherlands (Holland) 🇳🇱
- Contact:
Re: Found, NSA backdoor into Linux Kernel
https://www.youtube.com/watch?v=7gRsgkdfYJ8M0em wrote:Interesting, do you have a source for that?NSA_Dontspyoneme wrote:Linus Torvalds was quoted as saying the NSA came knocking at his door and wanted him to backdoor a bug into linux. He didnt say if he did or didnt.
Note that it's rather difficult to keep such a thing hidden in open source software....
Tip: 10 things to do after installing Linux Mint 21.3 Virginia
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.
Re: Found, NSA backdoor into Linux Kernel
For those who prefer to read instead of watching videos: http://falkvinge.net/2013/11/17/nsa-ask ... -gnulinux/
Other sources say, that this is a misunderstanding and he was never been asked: http://mashable.com/2013/09/19/linus-to ... oor-linux/
Other sources say, that this is a misunderstanding and he was never been asked: http://mashable.com/2013/09/19/linus-to ... oor-linux/
Re: Found, NSA backdoor into Linux Kernel
Thank you so much Cosmo. I do prefer to read rather than to watch videos and I can't be the only one.
If your issue is solved, kindly indicate that by editing the first post in the topic, and adding [SOLVED] to the title. Thanks!
Re: Found, NSA backdoor into Linux Kernel
Agree 100% with that.Pjotr wrote:Where does the NSA come in?
Anyway, upgrade your kernel to the latest witin its series and you should be fine.
Though I don't 100% agree that things like this can't be hidden in open source software. Some of those encryption algorithms use very advanced math ... number theory et al. That stuff is so complex that bugs can hide for years. One recent one was 22 years old. It may be open source but hardly anyone can understand it.
For every complex problem there is an answer that is clear, simple, and wrong - H. L. Mencken
Re: Found, NSA backdoor into Linux Kernel
I don't know what BS you're quoting, but I see thisNSA_Dontspyoneme wrote:Is 3.16.0-38 affected?
BS or real??? ----- http://www.wired.com/2016/01/hack-brief ... linux-bug/
...
Who’s Affected?
In addition to the “tens of millions” of Linux PCs and servers running Linux Kernel version 3.8 and higher, because Android shares some code with Linux, the vulnerability affects any Android device running version 4.4 or later. As of January 4, that adds up to 69.4 percent of all Android devices, even more than the researchers estimated. Basically, if you’ve bought or upgraded your Android device within the last two years or so, that device is vulnerable.
at http://www.wired.com/2016/01/hack-brief ... linux-bug/Who’s Affected?
As far as Perception Point can tell, nobody so far.
Date of Publication: 01.20.16. 01.20.16
Time of Publication: 10:16 am. 10:16 am
Re: Found, NSA backdoor into Linux Kernel
Right.....
User to root exploit is no big deal. What could go wrong.
Here is the security teams detailed look into it. Not good!
http://perception-point.io/2016/01/14/a ... 2016-0728/
"In this write-up, we’ll discuss the technical details of the vulnerability as well as the techniques used to achieve kernel code execution using the vulnerability. Ultimately, the PoC provided successfully escalates privileges from a local user to root."
http://perception-point.io/wp-content/u ... xample.png
User to root exploit is no big deal. What could go wrong.
Here is the security teams detailed look into it. Not good!
http://perception-point.io/2016/01/14/a ... 2016-0728/
"In this write-up, we’ll discuss the technical details of the vulnerability as well as the techniques used to achieve kernel code execution using the vulnerability. Ultimately, the PoC provided successfully escalates privileges from a local user to root."
http://perception-point.io/wp-content/u ... xample.png
Habitual wrote:I don't know what BS you're quoting, but I see thisNSA_Dontspyoneme wrote:Is 3.16.0-38 affected?
BS or real??? ----- http://www.wired.com/2016/01/hack-brief ... linux-bug/
...
Who’s Affected?
In addition to the “tens of millions” of Linux PCs and servers running Linux Kernel version 3.8 and higher, because Android shares some code with Linux, the vulnerability affects any Android device running version 4.4 or later. As of January 4, that adds up to 69.4 percent of all Android devices, even more than the researchers estimated. Basically, if you’ve bought or upgraded your Android device within the last two years or so, that device is vulnerable.at http://www.wired.com/2016/01/hack-brief ... linux-bug/Who’s Affected?
As far as Perception Point can tell, nobody so far.
Date of Publication: 01.20.16. 01.20.16
Time of Publication: 10:16 am. 10:16 am
Re: Found, NSA backdoor into Linux Kernel
Notice that it is a "local user" exploit, not one that is remotely accessible. If a bad guy already has access to your home account then you have worse problems than this exploit!NSA_Dontspyoneme wrote:Right.....
User to root exploit is no big deal. What could go wrong.
Here is the security teams detailed look into it. Not good!
"... Ultimately, the PoC provided successfully escalates privileges from a local user to root"
Re: Found, NSA backdoor into Linux Kernel
The article has nothing to do with the NSA. OP is a troll spreading FUD. His account was made today just to post this misinformation.
You think that's a source? He was clearly joking.Pjotr wrote:https://www.youtube.com/watch?v=7gRsgkdfYJ8M0em wrote:Interesting, do you have a source for that?NSA_Dontspyoneme wrote:Linus Torvalds was quoted as saying the NSA came knocking at his door and wanted him to backdoor a bug into linux. He didnt say if he did or didnt.
Note that it's rather difficult to keep such a thing hidden in open source software....
Re: Found, NSA backdoor into Linux Kernel
Between the NSA, human DNA manipulation from space aliens, and systemd what's a fella to do?
Please add a [SOLVED] at the end of your original subject header if your question has been answered and solved.
Re: Found, NSA backdoor into Linux Kernel
Muldur and Scully are on the case.altair4 wrote:Between the NSA, human DNA manipulation from space aliens, and systemd what's a fella to do?
Re: Found, NSA backdoor into Linux Kernel
This is not a backdoor, it is a long-standing bug. It is totally impractical to exploit, taking hours on high-end hardware.