Linux users have been warned of a serious kernel vulnerability that could leave systems open to hackers.
Polish security specialist Isec Security Research has issued a warning of a memory management problem affecting Linux versions from 2.2 onwards.
Advertisement
It said that the "critical" vulnerability has been found in the Linux kernel memory management code in the mremap(2) system call, and is caused by a missing function return value check.
"Proper exploitation of this vulnerability leads to local privilege escalation, giving an attacker full super-user privileges. The vulnerability may also lead to a denial-of-service attack on the available system memory," the company warned.
The company said a malicious individual with access to a locally connected PC could take advantage of the "very easily exploitable" kernel problem. However, it added that there have been no reported cases of systems being attacked.
Patches for the vulnerability are available from the major Linux vendors including Suse Linux and Red Hat.
Red Hat bug fixes can be obtained at the web address below.
Tags:
Further reading
Linux vendors attack analyst report
Research claims Windows is just as secure as key Linux distributions
OpenSSL patches denial of service flaws
Open source protocol project warns on secure server vulnerabilities
Related whitepapers
Related jobs
Most read stories
Most commented stories
Most watched
Summit: Salesforce.com on SaaS and information overload
How web services contribute to data headaches
Analysis and Reports
Remote access - Three steps to getting connected
3.4 million UK professionals now work from home – is your company equipped?
Cost benefits of a global collaboration network
This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications
Advertisement
White paper library
Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.
Latest white papers
- The public sector – making flexible working work
- Sage CRM SalesLogix Data Synchronisation Technology for Mobile CRM Users
- The world of voice conferencing: A guide to creating the right environment
- The hidden financial and environmental costs of office printing
- A blueprint for data centre efficiency without upgrading
Advertisement
Hiring now on ComputingCareers:
Advertisement
Spotlight
Summit: Microsoft Office to the rescue
Chris Adams, Office Client product manager for Microsoft UK, explains...
Industry and human rights campaigners united in opposition to "three strikes" plan
Critics says government proposals to curb illegal downloading are unworkable...
Advertisements
Secondary navigation
Do you agree?
Have your say on this article