Linux Kernel ptrace local DoS vulnerability



There’s a local Denial of Service vulnerability in the linux kernel’s ptrace function according to secunia.com. It reportedly is present in kernel’s prior to 2.6.14.2 and is listed as a non-critical vulnerability. (However any security vulnerability should be treated seriously.) 2.6.14.2 is safe and fixes the vulnerability. The vuln was reported “by the vendor”, in this case, the linux kernel devel team.


From the advisory.

The vulnerability is caused due to a missing check of the thread’s group ID in ptrace.c when trying to determine whether the process is attempting to attach to itself when CLONE_THREAD is used. This may be exploited to cause a kernel crash.

Related Posts

Blog Traffic Exchange Related Posts
  • Linux software raid notes Here are a few other notes on linux software raid. I created a directory called raidinfo to keep information in to make it easy to maintain the raid array. First... from the software raid howto, I've done the following.... sfdisk -d /dev/hda > /raidinfo/partitions.hda sfdisk -d /dev/hde > /raidinfo/partitions.hde So..........
  • Remove Total Security 2009 | TotalSecurity 2009 Removal Total Security 2009 is also known as TotalSecurity 2009 or TotalSecurity2009. It is a newer version of the Total Security Antivirus which we highlighted just a week or so ago. It is a more troublesome variant of this rogue security software. In addition to the false warnings about problems on......
  • Park Your Virus Impervious Smugness Mac (and Linux) Users [/caption] I use linux. I prefer it over Windows for many reasons. It's more resistant to viruses, less of a target, but that doesn't mean that malware or other viruses are impossible. If someone were to trick me into running something and even worse, trick me into using my administrator......
Blog Traffic Exchange Related Websites
  • Stock Assault 2.0 AI Software - 60% Commission, 17% Conversion Rate Once your copy of Stock Assault 2.0 picks a stock, you can also research the stock using the built-in features such as charting if you wish.Real day traders and professional traders do just that, hence the name "day" traders.But we'll guarantee that you'll barely make any money after a year......
  • Hard Drive Data Recovery Software Some people think that hard drive data recovery can be really difficult. Because of the reliable software tools that are available on the market today, it is possible to recover data even if they are already deleted. Usually, people accidentally deletes file on their computers and some of them......
  • Creating A Local Mastermind Group To Help You Achieve Your Lifestyle Design Goals photo credit: ecastro In the early days of a new blog¬†internet business¬†can seem pretty lonely. You're working hard to produce the best possible content, trying to get the word out about what you're doing and build up a readership but it's easy to get demotivated. The internet is full......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site