Ubuntu issues security patch for kernel flaw

Ubuntu today became the latest Linux vendor to patch a vulnerability in the open source operating system's kernel that could have left the door open for hackers to find their way into users' machines.

In an email sent overnight, the Linux vendor warned users to update all machines running recent versions of Ubuntu, ranging from 6.06, which was released back in mid-2006, to version 8.04, which came out earlier this year. The problem also applied to other versions of Ubuntu such as Kubuntu, Edubuntu and Xubuntu.

"It was discovered that there were multiple NULL-pointed function de-references in the Linux kernel terminal handling code," wrote Ubuntu administrators in the email. "A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service."

The email also detailed a number of other bugs which could be exploited by an attacker who already had some level of access to a computer running Ubuntu.

A number of other Linux vendors including Novell have recently released similar patches to address the problems.

Advertisement

Print feature brought to you by Adobe

Talkback 8 comments

    is this really news? Anonymous -- 26/08/08

    Is every security flaw published for anything news anymore? I mean cmon, there are serious flaws in many different Linux kernels, in Windows, in all sorts of things published every month. Do you guys really need to publish every damn one of them? get off mah RSS feed...

    yes. Anonymous -- 26/08/08 (in reply to #320110625)

    Linux having security issues? That's news!

    You're just bitter because now, the world knows that Linux has its share of security issues, and not just Windows or OSX.

    Sucks to be a one-sided Linux Zealot right?

    There's Always A Troll Lurking.... CJ -- 27/08/08 (in reply to #320110653)

    You're an idiot! Linux has always had security flaws just as Windows & OS X have. The difference is that Linux has always been open about it. The 1st comment was about the need to constantly have this sent to his/her RSS feed and not about his/her supposed bitterness over Linux having an issue. Grow up!

    Flaw is one thing... Anonymous -- 27/08/08 (in reply to #320110653)

    ....actively being exploited is another. While the first is common on any system Windows seems to have a worse track record on the second. It might also be worthwhile to look at the amount of damage that can be caused by the flaw and the ease of exploiting it. Windows comes up short on both of those as well.

    Billy Neo -- 27/08/08

    no OS or platform is perfect. ain't gonna' happen. (unless you use GodBSD, of course(: doesn't matter how many patches Linux is patched with, its still, by design, more secure than windblows will ever be. Linux was born on the network and designed accordingly. Windblows was designed as a desktop that can be everything to everybody. and it shows. i don't even remember what spyware is or what a virus/worm is anymore. and that's a great feeling. gotta' go now and update my antivirus---NOT!

    Misleading, sensationalized. Anonymous -- 27/08/08

    The headline says....

    Ubuntu today became the latest Linux vendor to patch a vulnerability in the open source operating system's kernel that could have left the door open for hackers to find their way into users' machines.

    It was a "local" exploit, so it only would have only left the door open for "users" to find their way into "users" machines. Or a hacker, with a user account, logged in locally to a machine to run something with escalated permissions.

    There are better linux kernel and application bugs out there to write about.

    no links? Anonymous -- 27/08/08

    What, no links? You mean after telling me about this scary vulnerability, you're going to make me google around to find out more details on the severity and other info?

    looking for the links Anonymous -- 27/08/08 (in reply to #320110674)

    I am wondering the same question. Where can I get more details about this vulnerability? Or at least tell me which kernel update is actually targeting this problem in Ubuntu.

Add your opinion

Latest Videos

Blogs

  • Darren Greenwood Telecom NZ savings damage prospects
    If Telecom NZ wants to have any of the NZ$1.5 billion the government intends to spend on its new broadband network, it had better think long and hard before offshoring 1500 jobs.
  • Array iiNet: The whys and what nows
    Last week the Federal Court ruled that internet service providers are not responsible for copyright violation by their customers. This is an important decision not just for iiNet, which spent around $4 million defending the case, but for all ISPs in Australia and, indeed, globally.
  • Array Govt, hurry up with releasing data
    A programmer scraped data from the My School website to make some really cool heat maps showing regions of smart schools — no thanks to the government, which didn't supply the data in any useful kind of format.
  • More blogs »

Tags

  1. 104 articles are tagged with acma
  2. 61 articles are tagged with afact
  3. 1291 articles are tagged with apple
  4. 525 articles are tagged with australia
  5. 1326 articles are tagged with broadband
  6. 89 articles are tagged with censorship
  7. 210 articles are tagged with china
  8. 686 articles are tagged with cio
  9. 298 articles are tagged with conroy
  10. 146 articles are tagged with contract
  11. 399 articles are tagged with copyright
  12. 18 articles are tagged with court case
  13. 13 articles are tagged with cowdroy
  14. 142 articles are tagged with defence
  15. 115 articles are tagged with filter
  16. 1066 articles are tagged with google
  17. 22 articles are tagged with govt
  18. 1317 articles are tagged with ibm
  19. 249 articles are tagged with iinet
  20. 12 articles are tagged with iitrial
  21. 6 articles are tagged with ipad
  22. 746 articles are tagged with jobs
  23. 8 articles are tagged with judgement
  24. 403 articles are tagged with laptop
  25. 12 articles are tagged with microsoft
  26. 1140 articles are tagged with mobile
  27. 366 articles are tagged with mobile phone
  28. 244 articles are tagged with national broadband network
  29. 444 articles are tagged with nbn
  30. 22 articles are tagged with nbn co
  31. 225 articles are tagged with new zealand
  32. 208 articles are tagged with nsw
  33. 905 articles are tagged with optus
  34. 32 articles are tagged with parliament
  35. 333 articles are tagged with piracy
  36. 160 articles are tagged with police
  37. 2665 articles are tagged with security
  38. 616 articles are tagged with server
  39. 68 articles are tagged with south australia
  40. 195 articles are tagged with stephen conroy
  41. 733 articles are tagged with storage
  42. 134 articles are tagged with tasmania
  43. 74 articles are tagged with telecom nz
  44. 2493 articles are tagged with telstra
  45. 147 articles are tagged with tender
  46. 66 articles are tagged with trial
  47. 193 articles are tagged with victoria
  48. 6 articles are tagged with whole-of-government
  49. 980 articles are tagged with wireless
  50. 18 articles are tagged with xt

Back to top

Featured