Announcement

Collapse
No announcement yet.

Linux 3.16~4.18.8 Affected By Another Potential Local Privilege Escalation Bug

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Linux 3.16~4.18.8 Affected By Another Potential Local Privilege Escalation Bug

    Phoronix: Linux 3.16~4.18.8 Affected By Another Potential Local Privilege Escalation Bug

    From June of 2014 with Linux 3.16 until last week, the Linux kernel was affected by another potential local privilege escalation bug...

    http://www.phoronix.com/scan.php?pag...8-vmacache-bug

  • #2
    Which kernels will be patched?

    Comment


    • #3
      What about Android phones with "outdated" kernels? Mine's on 3.18.

      Comment


      • #4
        Originally posted by Ikaris View Post
        What about Android phones with "outdated" kernels? Mine's on 3.18.
        *walks away laughing*

        Comment


        • #5
          a security fix that also improves performance? NICE

          Comment


          • #6
            Originally posted by Azrael5 View Post
            Which kernels will be patched?
            latest and LTS ones will be patched by upstream. Your distro may or may not patch its kernel (if they are not running latest or LTS kernels already), you need to ask them.

            Comment


            • #7
              Originally posted by Ikaris View Post
              What about Android phones with "outdated" kernels? Mine's on 3.18.
              Throw it away and buy a new one. Only way to get updated kernels on Android.

              Comment


              • #8
                Originally posted by starshipeleven View Post
                Throw it away and buy a new one. Only way to get updated kernels on Android.
                Yeah, the QA process for publishing new kernels to phones is most likely a complete nightmare. I feel sorry for their R&D people

                Comment


                • #9
                  Originally posted by Ikaris View Post
                  What about Android phones with "outdated" kernels? Mine's on 3.18.
                  Well, what are you waiting for as patch is there just apply it and start compiling.

                  GKH likely is on his hardest times to maintain nearly everthing on kernel.org
                  Last edited by dungeon; 09-19-2018, 10:32 AM.

                  Comment


                  • #10
                    Originally posted by nanonyme View Post
                    Yeah, the QA process for publishing new kernels to phones is most likely a complete nightmare. I feel sorry for their R&D people
                    There is no QA for "updates" at all, the engineers preparing the SDK/BSP are just reassigned to the next SoC well before the current SoC is sold to OEMs. They might work on updates only if they have free time between a SoC release and the next (usually they don't).

                    There is limited or no QA on Android updates too (i.e. updates to Android userspace only, no kernel changes), which is why in many cases there is breakage and performance/battery life losses after you upgrade the firmware.

                    This is also true for embedded SoCs for NAS and routers.

                    Consumer embedded development in general is a cesspool of cost-saving, they are cutting all possible corners even for hardware that is sold for 600+ euros and has an aura of "luxury".

                    Comment

                    Working...
                    X