Linux kernel version from 2.6.17 to 2.6.24.1 all are affected because of vmsplice bug. The exploit code can be used to test if a kernel is vulnerable and it can start a root shell.
Update: See how to apply a patch to kernel source tree.
Featured Articles:
- 20 Linux System Monitoring Tools Every SysAdmin Should Know
- 20 Linux Server Hardening Security Tips
- 10 Greatest Open Source Software Of 2009
- My 10 UNIX Command Line Mistakes
- Top 5 Email Client For Linux, Mac OS X, and Windows Users
- Top 20 OpenSSH Server Best Security Practices
- Top 10 Open Source Web-Based Project Management Software
- Top 5 Linux Video Editor Software
Want to read Linux tips and tricks, but don't have time to check our blog everyday? Subscribe to our daily email newsletter to make sure you don't miss a single tip/tricks. Subscribe to our weekly newsletter here!
- Email this to a friend
- Download PDF version
- Printable version
- Comment RSS feed
- Last Updated: Feb/12/2008
{ 4 comments… read them below or add one }
What would be helpful would be an explanation of how to apply these fixes to a vulnerable kernel.
I second that!
Howdy All,
I have a redhat/Centos RPMs with the upstream kernel patch compiled at http://erek.blumenthals.com/blog/
Don’t let this one slide people – patch now.
All distro’s now have updated kernel packages. Apply them. :)