Dangerous security flaw patched in Linux - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

What is the most important Linux security technology?

	SELinux
	grsecurity
	CIS Benchmark
	Bastille Linux
	iptables
	LIDS

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

All About Linux

DanWalsh LiveJournal

Securitydistro

Latest Newsletters

Linux Security Week: May 14th, 2012

Linux Advisory Watch: May 10th, 2012

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Dangerous security flaw patched in Linux

User Rating:

How can I rate this item?

Source: Desktop Linux - Posted by Anthony Pell

A critical vulnerability in the Linux kernel that gives attackers access to root via X server has been patched by Linus Torvalds. Meanwhile, kernel developer James Morris reports on the first-annual Linux Security Summit (LSS), which covered topics including usability, hardening the kernel, and API standardization. Linux folk have long shown an almost smug, if largely justified, confidence in the superior security of their operating system, especially compared to Windows. Yet, as Linux takes on a greater role, especially in the server and mobile device worlds, the threat of malicious attacks grows larger.

Now, it turns out that Linux may not be quite as secure as we thought.

A "highly dangerous" privilege escalation vulnerability that would permit an attacker to execute arbitrary code as root from any GUI application via X server, was recently patched in the Linux kernel, writes Lucia Constantin on Softpedia. The flaw, which affects both x86_32 and x86_64 platforms, is said to have been present since the release of Linux 2.6.0.

Read this full article at Desktop Linux