Linux Root Exploit Once Fixed is Back Again

by Developer.com Staff

A root exploit has been festering in the Linux kernel for 3 years.

The Linux kernel had a root access exploit back in 2007, it was fixed, it came back and now it's fixed again.

"The vulnerability in a component of the operating system that translates values from 64 bits to 32 bits (and vice versa) was fixed once before – in 2007 with the release of version," The Register's Dan Goodin reported. "But several months later, developers inadvertently rolled back the change, once again leaving the OS open to attacks that allow unprivileged users to gain full root access."This bug has been festering in the kernel for years. It's not network exploitable, a hacker needs a valid account on the machine before root access can be gained, but for many corporations and government agencies that use Linux - it's a big deal.

This article was originally published on Thursday Sep 16th 2010
Mobile Site | Full Site