Patch available for memory error
A security flaw has been found in Linux kernel version 2.6.x that could allow malicious local users to cause a denial of service attack, according to an advisory from security firm Secunia.
The vulnerability is caused by an out-of-bounds memory error in the 'fill_write_buffer()' function in 'sysfs/file.c'.
The problem occurs when writing a PAGE_SIZE amount of data that does not contain any zeroes to a 'sysfs' file.
The vulnerability has been fixed in version 2.6.17-rc1 of the Linux kernel, and users are advised to download the latest patch immediately.
A security flaw has been found in Linux kernel version 2.6.x that could allow malicious local users to cause a denial of service attack, according to an advisory from security firm Secunia.
The vulnerability is caused by an out-of-bounds memory error in the 'fill_write_buffer()' function in 'sysfs/file.c'.
The problem occurs when writing a PAGE_SIZE amount of data that does not contain any zeroes to a 'sysfs' file.
The vulnerability has been fixed in version 2.6.17-rc1 of the Linux kernel, and users are advised to download the latest patch immediately.
Share this page
Email this page
Back to Top
Home
Edit Post
0 comments: