Linux Kernel ptrace local DoS vulnerability



There’s a local Denial of Service vulnerability in the linux kernel’s ptrace function according to secunia.com. It reportedly is present in kernel’s prior to 2.6.14.2 and is listed as a non-critical vulnerability. (However any security vulnerability should be treated seriously.) 2.6.14.2 is safe and fixes the vulnerability. The vuln was reported “by the vendor”, in this case, the linux kernel devel team.


From the advisory.

The vulnerability is caused due to a missing check of the thread’s group ID in ptrace.c when trying to determine whether the process is attempting to attach to itself when CLONE_THREAD is used. This may be exploited to cause a kernel crash.

Related Posts

Blog Traffic Exchange Related Posts
  • Some links to purchase linux boxed set installs OK, truth be told linux is usually thought of as a download for free and install operating system and there are LOT's of ways to do that. But it is also available for purchase at various places, from the different distributions web sites. Also, these are links to the product......
  • More linux software raid fun OK, I know there are probably quite a few looking at this thinking.... "Hello where has he been?" when I'm talking about playing around with software raid under ubuntu linux, but.... in spite of all I've done supporting desktop systems and even small business servers I've never had an opportunity......
  • Mandriva Linux 2006 review There is a Mandriva Linux 2006 review up at mandrake.tips.4.free.fr, which includes a nice primer on "Background: Linux software repositories and software installation"... I think it's nice to see a reviewer trying to clue people in to the terminology and "way things work" not in a "here's what the code......
Blog Traffic Exchange Related Websites
  • Creating A Local Mastermind Group To Help You Achieve Your Lifestyle Design Goals photo credit: ecastro In the early days of a new blog¬†internet business¬†can seem pretty lonely. You're working hard to produce the best possible content, trying to get the word out about what you're doing and build up a readership but it's easy to get demotivated. The internet is full......
  • Getting the Most Out of Local Coin Dealers Your local coin dealers are going to be some of the most important people to you and your collection, as far as your coin collecting hobby is concerned. These individuals can make it difficult for you to get the coins that you are looking for, but can also make it......
  • Stock Assault 2.0 AI Software - 60% Commission, 17% Conversion Rate Once your copy of Stock Assault 2.0 picks a stock, you can also research the stock using the built-in features such as charting if you wish.Real day traders and professional traders do just that, hence the name "day" traders.But we'll guarantee that you'll barely make any money after a year......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site