赶快升级到2.6.24吧！

Macolex

赶快升级到2.6.24吧！

http://bbs.chinaunix.net/thread-1052997-1-1.html





http://www.linux-ren.org/modules ... d=6020&forum=21
> There is a security hole "splice: missing user pointer access verification
> (CVE-2008-0009/10)"  (exploit exist as proof of concept) for all kernels
> between 2.6.12-2.6.24.1 (included) which allows any user get root access
> --

vmsplice() has cause several vulnerabilities recently, and it's
trivial to exploit:

http://www.milw0rm.com/exploits/5092

There are patches and updated kernel packages appearing for the various *nixs:

http://kerneltrap.org/Linux/Patc ... _Local_Root_Exploit

wyg1258

maybe 2.6.25 is better

zhllg

2.6.24.1 is still vulnerable
upgrade to 2.6.24.2

cnux

开了selinux还会这样？
有兴趣的不妨试试不同CPU系统是否都一样。

skykingf

等yum的updae

chendy

How old are you?
CU上发了还到sir上发。真是升级狂啊。偶一向跟着rpm走。什么时候repository里面出新内核了什么时候升。其实好用就行了呗，没事追踪内核版本做什么？偶们又不是开发内核的。

盖茨他爹

linux也不安全阿

xuco

Linux lander-desktop 2.6.24-5-generic #1 SMP Thu Jan 24 19:45:21 UTC 2008 i686 GNU/Linux

zhong

Post by chendy;1816996
How old are you?
CU上发了还到sir上发。真是升级狂啊。偶一向跟着rpm走。什么时候repository里面出新内核了什么时候升。其实好用就行了呗，没事追踪内核版本做什么？偶们又不是开发内核的。

这个.......你好像没明白楼让的意思.

之前的内核有个能拿到root权的bug

idolclub

今天升了.

.