Fedora RedHat Vulnerabilty Released
RedHat released a vulnerability today impacting PTRACE_SETREGS. The release simply states: "A race conditon in ptrace can lead to kernel stack corruption and arbitrary kernel-mode code execution. A local unprivileged user could use this flaw to elavate his privileges." It is being tracked as CVE-2013-0871. A PoC was also posted at http://seclists.org/oss-sec/
×
Diary Archives
Comments
Bob Hill
Feb 17th 2013
1 decade ago
The announcement was made by RedHat, for their Fedora product. They can only speak for themselves. Do you expect Microsoft's security announcements to refer to Apple's OS?
> why are they not affected also?
Maybe they are ?!
Whose has the responsibility for testing each reported problem on each available variant of Linus' open-source software? Linus Torvald? All the contributors and/or users of Linux, who can independently view and openly review the source-code?
Melvin
Feb 18th 2013
1 decade ago
Red Hat Bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=911937
jbmoore
Feb 18th 2013
1 decade ago