Linux kernel version from 2.6.17 to 220.127.116.11 all are affected because of vmsplice bug. The exploit code can be used to test if a kernel is vulnerable and it can start a root shell.
=> Debian Bug report logs
=> Fix 1 and Fix 2
Update: See how to apply a patch to kernel source tree.
What would be helpful would be an explanation of how to apply these fixes to a vulnerable kernel.
I second that!
Howdy All, I have a redhat/Centos RPMs with the upstream kernel patch compiled at http://erek.blumenthals.com/blog/
Don’t let this one slide people – patch now.
All distro’s now have updated kernel packages. Apply them. :)
Leave a Comment
Next post: Red Hat and Ubuntu Linux Top Enterprise Open-source Software
Previous post: Linus Torvalds on Linux Desktop Operating System
Don’t Miss Any Linux Tips
Get nixCraft in your inbox. It's free: