New Linux Kernel Vulnerability

Slashdot is powered by your submissions, so send in your scoop

New Linux Kernel Vulnerability 486

Posted by CmdrTaco on Sunday March 07, 2004 @12:22PM from the well-thats-just-not-pleasant dept.

Stop Or I'll Noop writes "Paul Starzetz writes, "A critical security vulnerability has been found in the Linux kernel memory management code inside the mremap(2) system call due to missing function return value check. This bug is completely unrelated to the mremap bug disclosed on 05-01-2003 except concerning the same internal kernel function code." Full scoop here." Update: 03/07 20:53 GMT by T : This vulnerability (and fixes) were mentioned briefly in an update to this earlier posting.

This discussion has been archived. No new comments can be posted.

New Linux Kernel Vulnerability

Search 486 Comments Log In/Create an Account

Comments Filter:

Install windows! (Score:4, Funny)

by Compunerd ( 107084 ) writes: on Sunday March 07, 2004 @12:25PM (#8490990) Homepage

Get windows CD
Boot
Install

bah

Share
twitter facebook
I'm guessing that we can expect a patch from SCO? (Score:4, Funny)

by rivaldufus ( 634820 ) writes: on Sunday March 07, 2004 @12:27PM (#8491004)

After all, if they can expect people to license Linux from them, they should be providing support.

Share
twitter facebook
Does this mean... (Score:3, Funny)

by mcx101 ( 724235 ) writes: on Sunday March 07, 2004 @12:28PM (#8491009)

...I'm going to have to patch the kernels on the Debian servers and reboot again?

That'll be the third time in as many months.

Share
twitter facebook
Well, as they say... (Score:2, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:28PM (#8491011)

In Linux it's a bug...

In Windows it's a feature.

Share
twitter facebook
Can someone quickly fix this ? (Score:5, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:30PM (#8491020)

So we can get back to bitching about Window's security flaws :D

Share
twitter facebook
"Windows users: want Security, install linux"??? (Score:5, Funny)

by Padrino121 ( 320846 ) writes: on Sunday March 07, 2004 @12:31PM (#8491032)

Slowly but surely as Linux is getting more mainstream it seems the same kind of holes that perpetually plague Windows exist in Linux as well.

It might be time to take a page from the MS book and take a few weeks for a full line by line audit.

Share
twitter facebook
Somewhere . . . (Score:5, Funny)

by Prince Vegeta SSJ4 ( 718736 ) writes: on Sunday March 07, 2004 @12:32PM (#8491035)

A Giddy Billionaire is scheming:
Kernel 2.6.4-rc2-bk3: Never, I'll Never turn to the Dark side, I'm open source...like my father before me.
Bill: So be it, open source
Bill: if you will not be turned, you will be destroyed (shooting purple lightning bolts)
Bill: You will pay the price for your lack of vision
Kernel 2.6.4-rc2-bk3: Linus please (in agony).
.....to be continued
I await my -5 (Troll)

Share
twitter facebook
Re:A lot of problems in mremap... (Score:4, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:32PM (#8491046)

Maybe is was Linus, and we should stop accepting his contributions :-)

Parent Share
twitter facebook
Laymens terms? (Score:2, Funny)

by oldosadmin ( 759103 ) writes: on Sunday March 07, 2004 @12:35PM (#8491061) Homepage

Could someone please say what this vulnerability is in English? That article made my head hurt.

Share
twitter facebook
Re:Damn (Score:5, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:35PM (#8491065)

Don't bother. There's no published exploit. Have a beer. Watch the game. Don't worry. Relax. What's your IP?

Parent Share
twitter facebook
Re:Damn (Score:2, Funny)

by Tremanhil ( 246867 ) writes: on Sunday March 07, 2004 @12:37PM (#8491084)

So turn off your PC, pop a bag of Kettle Corn or Pop Secret into the microwave and spend part of your Sunday popping kernals... and the rest watching movies.

And patch your kernel another day.

Parent Share
twitter facebook
Re:A lot of problems in mremap... (Score:2, Funny)

by Hello this is Linus ( 757336 ) writes: on Sunday March 07, 2004 @12:38PM (#8491092) Homepage

quiet you. >:(

Parent Share
twitter facebook
The mremap coder did so well (Score:0, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:44PM (#8491143)

He's flying to Redmond to join team Longhorn. Efforts in open source can get you a paying job!

Share
twitter facebook
Re:Laymens terms? (Score:5, Funny)

by WWWWolf ( 2428 ) writes: <wwwwolf@iki.fi> on Sunday March 07, 2004 @12:50PM (#8491172) Homepage

Sure. A program can ask the operating system kernel to Do Things. Now, someone has found out that when you ask the kernel to Do Things certain way, the kernel subsequently thinks you are the Boss.
Like, you have this stack of forms you want the computer signed. You hand them over to the computer. One of the papers is "Do whatever I say" form that would give you the Power. The computer won't read it and just signs it along with the others, then hands you the forms back.
How's that for an explanation?

Parent Share
twitter facebook
Re:A lot of problems in mremap... (Score:5, Funny)

by Otter ( 3800 ) writes: on Sunday March 07, 2004 @12:53PM (#8491198) Journal

These all sound like barebones, common mistakes. Who is contributing this source? Was it all the same person? Maybe we should be checking his/her code a bit more closely!
19 minutes later, and no one has blamed SCO yet? What's wrong with you people today?

Parent Share
twitter facebook
Re:Install windows! more like (Score:5, Funny)

by frause ( 234486 ) * writes: <frause AT home DOT se> on Sunday March 07, 2004 @12:57PM (#8491213)

Get a windows CD
Boot
Reboot
Install
Reboot
Install some more
Reboot
Continue installation
Reboot
Register windows installation
Change a setting
Reboot

bah

Parent Share
twitter facebook
Re:Important to Remember (Score:5, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @12:58PM (#8491222)

TO DO:

Log onto slashdot.
Bash Microsoft.
Bash the bashers of Microsoft.
Bash the bashers of the bashers of Microsoft.
... ad infinitum

Parent Share
twitter facebook
Re:Which kernels are effected (Score:1, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @01:04PM (#8491256)

Yeah, I just used my time dilator to install kernal 2.8.14, but then I checked and they've found yet another exploit that dates all the way back to version 2.0! So I set the time machine even further out and you're not going to believe this but--
+++no carrier

Parent Share
twitter facebook
Re:Many eyes, but wide open or tight shut ? (Score:2, Funny)

by wojci ( 248806 ) writes: on Sunday March 07, 2004 @01:05PM (#8491260)

The Linux Test Project test suite [sourceforge.net]

Parent Share
twitter facebook
Re:Important to Remember (Score:5, Funny)

by FattMattP ( 86246 ) writes: on Sunday March 07, 2004 @01:09PM (#8491283) Homepage

When a Windows vulnerability is patched, it is proof that closed source software is evil.

You misspelled if.

Parent Share
twitter facebook
Re:Install windows! (Score:4, Funny)

by arose ( 644256 ) writes: on Sunday March 07, 2004 @01:12PM (#8491295)

Reboot in 60 seconds...
Reboot in 60 seconds...
Reboot in 60 seconds... ...

Parent Share
twitter facebook
Re:Which kernels are effected (Score:4, Funny)

by Jeremy Erwin ( 2054 ) writes: on Sunday March 07, 2004 @01:14PM (#8491311) Journal

RTFA!

Version: 2.2 up to and including 2.2.25, 2.4 up to to and including 2.4.24, 2.6 up to to and including 2.6.2.

No, these kernels are affected. My guess is that kernels 2.2.26, 2.4.25. and 2.6.3 will be effected. The effect of a vulnerability is usually a bugfix release, as an unpatched kernel negatively affects security.

Parent Share
twitter facebook
Re:Can't agree more (Score:3, Funny)

by Traa ( 158207 ) * writes: on Sunday March 07, 2004 @01:22PM (#8491346) Homepage Journal

I predict the "Decamillenium bug"! Think of all those boxes that are still running 8000 years from now switching from 9999-12-31 to 10000-01-01, there goes the lexically sorted database.

(j/k)

Parent Share
twitter facebook
Re:Does this mean... (Score:2, Funny)

by Akoma The Immortal ( 36474 ) writes: <pascal@NOsPam.abessolo.com> on Sunday March 07, 2004 @02:29PM (#8491716) Homepage

Ignorance is a bliss!!

How can I break my own uptime record of 253 days beetween reboot when you patch all the useless local exploits!?!?! Stop it!!

14:37:24 up 42 days, 14:38, 1 user, load average: 1.50, 0.48, 0.16

And comming down because of you!!

Geeee, those FOSS guys are terrible.

Parent Share
twitter facebook
My god when will Microsoft learn? (Score:2, Funny)

by Pvt_Waldo ( 459439 ) writes: on Sunday March 07, 2004 @02:29PM (#8491717)

When are they ever going to get their act together and stop releasing such a buggy OS with these security violations!

Oh.... wait....

Share
twitter facebook
Re:Date format (Score:2, Funny)

by Nicolas Pillot ( 575186 ) writes: <(nicolas.pillot) (at) (gmail.com)> on Sunday March 07, 2004 @02:38PM (#8491784) Homepage

I have a dream : everyone starts working on the 13th of every month. There would be no date conflict, and furthermore, you would have much more holidays :-)

Parent Share
twitter facebook
Re:Typical user experience. (Score:2, Funny)

by Endive4Ever ( 742304 ) writes: on Sunday March 07, 2004 @03:57PM (#8492186)

That isn't his job. His job is to sit on his hands and watch them struggle, then come here and slag Microsoft for fun.

Parent Share
twitter facebook
Re:eyes wide stupid? (Score:5, Funny)

by Anonymous Coward writes: on Sunday March 07, 2004 @06:20PM (#8493032)

simply disable all local user accounts.

I really dont understand what all the fuss is about.

Parent Share
twitter facebook
Re:Many eyes, but wide open or tight shut ? (Score:5, Funny)

by Ironica ( 124657 ) writes: <pixel@bo o n d o c k.org> on Sunday March 07, 2004 @11:47PM (#8494919) Journal

This guy deserves an insightful mod. (emphasis added)

*ahem*

[displays 46th chromosome, which is clearly an X]

Parent Share
twitter facebook
Re:Many eyes, but wide open or tight shut ? (Score:4, Funny)

by CyberDruid ( 201684 ) writes: on Monday March 08, 2004 @03:11AM (#8496038) Homepage

[displays 46th chromosome, which is clearly an X]
Young lady, on this site we do not expose ourselves in public. The dress code clearly states that skirts must go _below_ the 46:th chromosome.

Parent Share
twitter facebook
change of language ? (Score:2, Funny)

by rkoot ( 557181 ) writes: on Monday March 08, 2004 @03:46AM (#8496157)

Wouldn't it be a good idea to rewrite the kernel in a different language, say, Ada95?
I believe that these exploits couldn't be in the kernel *if* it was written in Ada95.

r.

Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

New Linux Kernel Vulnerability 486

New Linux Kernel Vulnerability More Login

New Linux Kernel Vulnerability

Install windows! (Score:4, Funny)

I'm guessing that we can expect a patch from SCO? (Score:4, Funny)

Does this mean... (Score:3, Funny)

Well, as they say... (Score:2, Funny)

Can someone quickly fix this ? (Score:5, Funny)

"Windows users: want Security, install linux"??? (Score:5, Funny)

Somewhere . . . (Score:5, Funny)

Re:A lot of problems in mremap... (Score:4, Funny)

Laymens terms? (Score:2, Funny)

Re:Damn (Score:5, Funny)

Re:Damn (Score:2, Funny)

Re:A lot of problems in mremap... (Score:2, Funny)

The mremap coder did so well (Score:0, Funny)

Re:Laymens terms? (Score:5, Funny)

Re:A lot of problems in mremap... (Score:5, Funny)

Re:Install windows! more like (Score:5, Funny)

Re:Important to Remember (Score:5, Funny)

Re:Which kernels are effected (Score:1, Funny)

Re:Many eyes, but wide open or tight shut ? (Score:2, Funny)

Re:Important to Remember (Score:5, Funny)

Re:Install windows! (Score:4, Funny)

Re:Which kernels are effected (Score:4, Funny)

Re:Can't agree more (Score:3, Funny)

Re:Does this mean... (Score:2, Funny)

My god when will Microsoft learn? (Score:2, Funny)

Re:Date format (Score:2, Funny)

Re:Typical user experience. (Score:2, Funny)

Re:eyes wide stupid? (Score:5, Funny)

Re:Many eyes, but wide open or tight shut ? (Score:5, Funny)

Re:Many eyes, but wide open or tight shut ? (Score:4, Funny)

change of language ? (Score:2, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot