New Linux Kernel Vulnerability Exploited

Articles & Reviews
News Archive
Forums
Premium
Categories

Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals

New Linux Kernel Vulnerability Exploited

Written by Michael Larabel in Linux Kernel on 15 May 2013 at 10:52 AM EDT. 59 Comments

Last month it was the X.Org Server with a noted security vulnerability and now this time around it's the Linux kernel.

There was a perf event vulnerability for the past several kernel releases until it was recently addressed with the perf events code not checking everything submitted from user-space. This issue existed from the Linux 2.6.37 kernel up through the Linux 3.8.8 kernel, plus was also back-ported to the Red Hat Enterprise Linux 2.6.32 kernel.

Making this issue now center-stage is that a zero-day exploit has been released. In about 100 lines of code it provides local privilege escalation on all affected kernels.

59 Comments

About The Author

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.

Related Linux Kernel News

Linux 5.1-rc1 Kernel Released After A "Fairly Normal" Merge Window

Linux 5.1 Will Let You Treat PMEM Like 3DXPoint Optane NVDIMMs Back As System RAM

ZRAM Will See Greater Performance On Linux 5.1 - It Changed Its Default Compressor

BMQ "BitMap Queue" Is The Newest Linux CPU Scheduler, Inspired By Google's Zircon

The Notable Changes So Far With The Linux 5.1 Kernel

Linux 5.0-ck1 Kernel Rolls Out With MuQSS 0.190 Scheduler