Bug exposes Linux users

Linux users warned on kernel vulnerability

Peter Williams

Linux users have been warned of a serious kernel vulnerability that could leave systems open to hackers.

Polish security specialist Isec Security Research has issued a warning of a memory management problem affecting Linux versions from 2.2 onwards.

Advertisement

It said that the "critical" vulnerability has been found in the Linux kernel memory management code in the mremap(2) system call, and is caused by a missing function return value check.

"Proper exploitation of this vulnerability leads to local privilege escalation, giving an attacker full super-user privileges. The vulnerability may also lead to a denial-of-service attack on the available system memory," the company warned.

The company said a malicious individual with access to a locally connected PC could take advantage of the "very easily exploitable" kernel problem. However, it added that there have been no reported cases of systems being attacked.

Patches for the vulnerability are available from the major Linux vendors including Suse Linux and Red Hat.

Red Hat bug fixes can be obtained at the web address below.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Related whitepapers

Related jobs

Most watched

HTC Hero

Hands on with the HTC Hero

V3.co.uk gets a walk through of the Hero, which includes HTC's new Sense overlay for Android

Xperia X1

Video Review: Sony Ericsson Xperia X1

First Looks Editor Ian Williams gets hands on with the Sony Ericsson Xperia X1

IT white papers

Search white papers

Top categories

Poll

Poll: Summer smartphones

Poll: Summer smartphones

Which smartphone will you be taking to the beach this summer?

View poll results

Advertisement

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Spotlight

HTC Hero

Hands on with the HTC Hero

V3.co.uk gets a walk through of the Hero, which includes...

NetGear ReadyNAS NVX

Review: NetGear ReadyNAS NVX

NetGear's four-bay compact network-attached storage gets a serious speed boost

AMD

AMD adds to six-core Opteron line up

New HE processors promise even lower power consumption

Adobe Systems

Adobe launches ColdFusion 9 and ColdFusion Builder

Firm promises enhanced developer productivity

Primary Navigation