[Gloucs] Linux kernel vulnerability
Iain Calder
iain.calder at gmail.com
Mon Feb 11 09:32:09 GMT 2008
On 10/02/2008, Glyn Davies <glynd at walmore.com> wrote:
>
> The LUGmaster list had a few posts concerning a local user vulnerability
> in kernels since 2.6.17. This appears to have surfaced a few days ago.
>
> I don't have user friendly details but to quote from the posting, "it is
> currently listed on http://isc.sans.org/newssummary.html as "Linux
> Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit"
Thanks for posting this Glyn, I hadn't spotted it. If anyone is running
Centos 5 (and presumably RHEL 5) I can confirm it is exploitable in the
default setup.
Iain
More information about the gloucs
mailing list