February 9, 2001

Caldera advisory: Linux kernels 2.2 and 2.4

Author: JT Smith

"There are two security problems in 2.2 and 2.4 kernels. By passing a negative offset to sysctl(), an attacker can read large parts of Linux kernel memory. In addition, a race condition has been discovered that allows an attacker to attach via ptrace to a setuid process, allowing him to modify the running process." Get the full details at LWN.net.


  • Linux
Click Here!