A new serious vulnerability has been discovered in the Linux kernel which could allow a local attacker to gain escalated privileges. The versions that are affected are 2.2 up to & including 2.2.25, 2.4 through to & including 2.4.24 & 2.6 up to & including 2.6.2. The bug is a critical security vulnerability found in the Linux kernel memory management code, due to a missing function return value check inside the mremap(2) system call, it's not related to the other recent mremap bug.
Check out the full advisory and exploit, here.
Post ID: 299, posted by jase at 02:59 PMThanks for signing in, . Now you can comment. (sign out)
(If you haven't left a comment here before, you may need to be approved before your comment will appear.)