呵呵，刚切到Ubuntu没几天，就爆出一个重大内核漏洞，描述如下：

Tavis Ormandy and Julien Tinnes discovered that Linux did not correctly
initialize certain socket operation function pointers.  A local attacker
could exploit this to gain root privileges.  By default, Ubuntu 8.04
and later with a non-zero /proc/sys/vm/mmap_min_addr setting were not
vulnerable.

还有个中文的说明 ...

Continue reading