Kernel 2.6.25: 64 Bit Systems At Risk
The changelog for kernel 2.6.25.11 includes just a single entry, however, it seems to be so important that the Kernel Stable Team urgently advises users to upgrade the kernel on 64 bit multiple user systems.
The patch by Geman developer Michael Karcher remove an issue in the local descriptor table (ldt) on x86_64 systems. Details of the bug have not yet been disclosed. In his release announcement Greg Kroah-Hartman writes that systems with unrestricted user accounts should definitely be updated. It can be assumed that logged in users are able to escalate their privileges thanks to the bug.
A couple of days ago, the kernel 2.6.25.10 release removed two vulnerabilities both of which affected the x86_64 platform. The first bug affected several drivers and could be exploited to run arbitrary code, or crash the kernel. The second bug affected the "sys32_ptrace()" function in "arch/x86/kernel/ptrace.c" and could cause an overflow of the "refcount" field in the "task_struct" structure, thus causing a number of system errors.
The bugs affect all 2.6.25 series kernels. The kernel development team urgently advises users to install patches.
Issue 14: Raspberry Pi Handbook/Special Editions
Tag Cloud
News
-
SCO Rises from the Swamp
Longtime litigator revives an ancient suit against IBM alleging Linux infringes on Unix copyrights.
-
UberStudent Project Releases UberStudent 3.0
Specialty distro keeps the focus on advanced learning.
-
openSUSE Conference Approaches
The openSUSE Conference will be held July 18-22, 2013, at the Olympic Museum in Thessaloniki, Greece.
-
Drupal.org Hacked
Security breached at home sites of the CMS project.
-
Oracle Takes Action on Java Security
Lead Java developer vows policy changes and more attention to fixing problems.
-
Google and NASA Partner in Quantum Computing Project
Vendor D-Wave scores big with a sale to NASA's Quantum Intelligence Lab.
-
Mageia Project Announces Mageia 3 Linux
Many package updates and Steam integration highlight the latest from the Mandriva-based community Linux.
-
FSF Outs the World Wide Web Consortium over DRM Proposal
Richard Stallman calls for the W3C to remain independent of vendor interests.
-
Debian 7.0 Debuts
The new release supports nine architectures, 73 human languages, and zero non-Free components.
-
Alpha Version of Fedora 19 Released
Fedora developers release the first alpha version of Fedora 19, known as Schrödinger’s Cat, for general testing. The final release is expected in July 2013.