Ubuntu issues security patch for kernel flaw

Ubuntu today became the latest Linux vendor to patch a vulnerability in the open source operating system's kernel that could have left the door open for hackers to find their way into users' machines.

In an email sent overnight, the Linux vendor warned users to update all machines running recent versions of Ubuntu, ranging from 6.06, which was released back in mid-2006, to version 8.04, which came out earlier this year. The problem also applied to other versions of Ubuntu such as Kubuntu, Edubuntu and Xubuntu.

"It was discovered that there were multiple NULL-pointed function de-references in the Linux kernel terminal handling code," wrote Ubuntu administrators in the email. "A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service."

The email also detailed a number of other bugs which could be exploited by an attacker who already had some level of access to a computer running Ubuntu.

A number of other Linux vendors including Novell have recently released similar patches to address the problems.

Advertisement

Print feature brought to you by Hewlett Packard

Talkback 8 comments

    is this really news?Anonymous -- 26/08/08

    Is every security flaw published for anything news anymore? I mean cmon, there are serious flaws in many different Linux kernels, in Windows, in all sorts of things published every month. Do you guys really need to publish every damn one of them? get off mah RSS feed...

    yes.Anonymous -- 26/08/08 (in reply to #320110625)

    Linux having security issues? That's news!

    You're just bitter because now, the world knows that Linux has its share of security issues, and not just Windows or OSX.

    Sucks to be a one-sided Linux Zealot right?

    There's Always A Troll Lurking....CJ -- 27/08/08 (in reply to #320110653)

    You're an idiot! Linux has always had security flaws just as Windows & OS X have. The difference is that Linux has always been open about it. The 1st comment was about the need to constantly have this sent to his/her RSS feed and not about his/her supposed bitterness over Linux having an issue. Grow up!

    Flaw is one thing...Anonymous -- 27/08/08 (in reply to #320110653)

    ....actively being exploited is another. While the first is common on any system Windows seems to have a worse track record on the second. It might also be worthwhile to look at the amount of damage that can be caused by the flaw and the ease of exploiting it. Windows comes up short on both of those as well.

    BillyNeo -- 27/08/08

    no OS or platform is perfect. ain't gonna' happen. (unless you use GodBSD, of course(: doesn't matter how many patches Linux is patched with, its still, by design, more secure than windblows will ever be. Linux was born on the network and designed accordingly. Windblows was designed as a desktop that can be everything to everybody. and it shows. i don't even remember what spyware is or what a virus/worm is anymore. and that's a great feeling. gotta' go now and update my antivirus---NOT!

    Misleading, sensationalized.Anonymous -- 27/08/08

    The headline says....

    Ubuntu today became the latest Linux vendor to patch a vulnerability in the open source operating system's kernel that could have left the door open for hackers to find their way into users' machines.

    It was a "local" exploit, so it only would have only left the door open for "users" to find their way into "users" machines. Or a hacker, with a user account, logged in locally to a machine to run something with escalated permissions.

    There are better linux kernel and application bugs out there to write about.

    no links?Anonymous -- 27/08/08

    What, no links? You mean after telling me about this scary vulnerability, you're going to make me google around to find out more details on the severity and other info?

    looking for the linksAnonymous -- 27/08/08 (in reply to #320110674)

    I am wondering the same question. Where can I get more details about this vulnerability? Or at least tell me which kernel update is actually targeting this problem in Ubuntu.

Add your opinion


Latest Videos

Blogs

  • David Braue Will Rudd's bush backhaul bonanza deliver?
    Rural areas will be welcoming the government's decision to put its money where its politicising is, funnelling $250m into a regional fibre upgrade to six rural centres. Remedying over a decade of near-neglect at the hands of telecoms privatisation, the investment could be the firmest step yet for Labor's NBN dream — but with inevitable political questions and a looming election, Rudd and Conroy need to deliver, and quickly, to preserve the NBN's credibility.
  • Array Doing for AV what VoIP did for telephony
    Sydney-based start-up Audinate is making traditional analog cabling obsolete in favour of TCP/IP-based networking technology. And it's doing a pretty good job so far, with its technology used by World Youth Day and the Sydney Opera House.
  • Array WiMax in Australia: Part two
    WiMax could be the standard that drives the next phase of mobile broadband, it provides an opportunity for players wanting to establish a pure IP network to carry voice and data effectively — but is this what operators want?
  • More blogs »

Tags

  1. 467 articles are tagged with 3g
  2. 5 articles are tagged with 3g s
  3. 7 articles are tagged with 3gs
  4. 430 articles are tagged with accc
  5. 72 articles are tagged with act
  6. 22 articles are tagged with anao
  7. 1250 articles are tagged with apple
  8. 129 articles are tagged with ato
  9. 35 articles are tagged with audit
  10. 18 articles are tagged with backhaul
  11. 1260 articles are tagged with broadband
  12. 194 articles are tagged with budget
  13. 8 articles are tagged with cenitex
  14. 202 articles are tagged with ceo
  15. 52 articles are tagged with cepu
  16. 638 articles are tagged with cio
  17. 125 articles are tagged with competition
  18. 188 articles are tagged with conroy
  19. 117 articles are tagged with contract
  20. 20 articles are tagged with david thodey
  21. 50 articles are tagged with e-health
  22. 1017 articles are tagged with google
  23. 968 articles are tagged with government
  24. 764 articles are tagged with hp
  25. 1271 articles are tagged with ibm
  26. 331 articles are tagged with iphone
  27. 267 articles are tagged with isp
  28. 725 articles are tagged with jobs
  29. 1418 articles are tagged with microsoft
  30. 32 articles are tagged with minchin
  31. 1097 articles are tagged with mobile
  32. 324 articles are tagged with mobile phone
  33. 144 articles are tagged with national broadband network
  34. 255 articles are tagged with nbn
  35. 175 articles are tagged with nsw
  36. 835 articles are tagged with optus
  37. 141 articles are tagged with police
  38. 149 articles are tagged with queensland
  39. 2619 articles are tagged with security
  40. 138 articles are tagged with smartphone
  41. 1270 articles are tagged with software
  42. 134 articles are tagged with stephen conroy
  43. 159 articles are tagged with sydney
  44. 89 articles are tagged with tasmania
  45. 216 articles are tagged with telco
  46. 2271 articles are tagged with telstra
  47. 97 articles are tagged with union
  48. 150 articles are tagged with victoria
  49. 312 articles are tagged with vodafone
  50. 69 articles are tagged with windows 7

Back to top

Featured