[SecurityNotice]Linux Kernel vulnerability
Posted on Thu 20 August 2009 in 我用(IT) • Tagged with security, ubuntu
呵呵,刚切到Ubuntu没几天,就爆出一个重大内核漏洞,描述如下:
Tavis Ormandy and Julien Tinnes discovered that Linux did not correctly
initialize certain socket operation function pointers. A local attacker
could exploit this to gain root privileges. By default, Ubuntu 8.04
and later with a non-zero /proc/sys/vm/mmap_min_addr setting were not
vulnerable.
还有个中文的说明 ...
Continue reading