Thursday, August 19, 2010

Serious Bug in Linux Kernel Since 2.6.0

When Greg released -Stable kernel updates few days ago, he didn't say that there was a very serious bug lurking in the kernel that has been passed down since 2.6.0 release that has been fixed. It was Linus who wrote the patch for 2.6.36 and goes back to previous kernel releases maintained by Greg as part of -Stable updates.

Joanna Rutkowska, founder and CEO of Invisible Things Lab posted a blog post about this problem after her employee Rafal published a paper describing about the problem.

I'm sure many of Linux vendors will release an update to their kernel stocks by adding Linus' patch to make sure it's not being exploited by attackers.