Linux Kernel Sendpage Local Privilege Escalation

newsbot

newsbot

RSS Feed
The Linux kernel failed to properly initialize some entries the proto_ops struct for several protocols, leading to NULL being derefenced and used as a function pointer. By using mmap(2) to map page 0, an attacker can execute arbitrary code in the context of the kernel. Several public exploits exist for this vulnerability, including spender's wunderbar_emporium and rcvalle's ppc port, sock_sendpage.c. All Linux 2.4/2.6 versions since May 2001 are believed to be affected: 2.4.4 up to and including 2.4.37.4; 2.6.0 up to and including 2.6.30.4

Weiterlesen...
 
Anmelden, um zu antworten.

Ähnliche Themen

Gentoo Linux Security Advisory 201209-25
Gentoo Linux Security Advisory 201209-25: Gentoo Linux Security Advisory 201209-25 - Multiple vulnerabilities have been found in VMware Player, Server, and Workstation, allowing remote and local...

Red Hat Security Advisory 2012-1505-01
Red Hat Security Advisory 2012-1505-01: Red Hat Security Advisory 2012-1505-01 - The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat...

Tor-ramdisk i686 UClibc-based Linux Distribution MIPS 20121127
Tor-ramdisk i686 UClibc-based Linux Distribution MIPS 20121127: Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and...

Red Hat Security Advisory 2012-1207-01
Red Hat Security Advisory 2012-1207-01: Red Hat Security Advisory 2012-1207-01 - The glibc packages provide the standard C and standard math libraries used by multiple programs on the system...

Red Hat Security Advisory 2012-1208-01
Red Hat Security Advisory 2012-1208-01: Red Hat Security Advisory 2012-1208-01 - The glibc packages provide the standard C and standard math libraries used by multiple programs on the system...

Neueste Themen

Zurück
Oben