Linux 64 bit Kernel exploit - patch your systems now

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › Linux › Linux 64 bit Kernel exploit - patch your systems now

freitasm

BDFL - Memuneh
80655 posts

Uber Geek
+1 received by user: 41052

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#68372 20-Sep-2010 16:20

Just posting this because seeing some Linux users are in the "Linux is so secure I don't have to worry" camp...

Story on Slashdot, security advisory.

And yes, I know it requires access to the machine. But as a system admin do you know what your end users are doing right now?

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

muppet

2644 posts

Uber Geek
+1 received by user: 1661

Trusted

#382342 20-Sep-2010 16:26

freitasm: But as a system admin do you know what your end users are doing right now?

Yes, because I lock the entire system down with Grsecurity. So running your own binary isn't allowed on my systems, it has to be a root owned binary in a root owned directory. Plus everything executed is logged if you're untrusted.

But being a smart-arse aside, this is big hole. But it's nowhere near as bad as that slashdot article paints it!

Audiophiles are such twits! They buy such pointless stuff: Gold plated cables, $2000 power cords. Idiots.

OOOHHHH HYPERFIBRE!

freitasm

BDFL - Memuneh
80655 posts

Uber Geek
+1 received by user: 41052

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#382347 20-Sep-2010 16:31

You are a good admin and do it. There are hundreds of thousands of systems around, and most likely some underpaid admin is not doing it. So why not let people know about this?

I posted this on Twitter and the only thing I got was replies from haters who started attacking with comments that sound like "Oh, but Linux is still safer." or "This is not as bad as the Windows problems".

For $deity sake, I am not into "my OS is bigger than yours", but just posting a courtesy note, a reminder, to those admins who might have missed it.

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

muppet

2644 posts

Uber Geek
+1 received by user: 1661

Trusted

#382350 20-Sep-2010 16:34

Yea, like I said, I was just being a smart arse.

My main point (I guess not very clearly made) was that the Slashdot article is extremely alarmist when it doesn't need to be. Not that it wasn't worth posting.

Audiophiles are such twits! They buy such pointless stuff: Gold plated cables, $2000 power cords. Idiots.

OOOHHHH HYPERFIBRE!

oldmaknz

536 posts

Ultimate Geek

#382352 20-Sep-2010 16:36

There are a load more 0day local root exploits. Any good sysop will be able to keep people off regular users anyway.

+++ GRsec, great modification for all Linux admins.

Will patch soon. I get automatic upgrades from Cron-apt but I assume it'll be a while before the kernel is patched.

michaelmurfy

meow
13580 posts

Uber Geek
+1 received by user: 10912

Moderator

ID Verified

Trusted

Lifetime subscriber

#382355 20-Sep-2010 16:38

Puppet is good :) - All my systems are clean.

Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

oldmaknz

536 posts

Ultimate Geek

#382356 20-Sep-2010 16:40

In fact, this was patched in Ubuntu last week. Admins just need to perform a simple upgrade. Done and done :P

News and reviews »

New ECOVACS DEEBOT T80S OMNI Available Now
Posted 9-Apr-2026 11:11

Ring Brings 4K Video to Battery-Powered Doorbells
Posted 9-Apr-2026 11:01

Synology Announces a New Privacy-First Home Monitoring Experience for BeeStation Plus
Posted 9-Apr-2026 10:02

GIGABYTE X870E AERO X3D DARK WOOD Redefines the Motherboard
Posted 7-Apr-2026 14:06

Datacom Acquires Auckland Data Centre from T4
Posted 2-Apr-2026 09:43

Spark Launches Satellite Service with SMS and data options
Posted 2-Apr-2026 09:16

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Support Geekzone »

You can support Geekzone with a one-off or recurring donation via PressPatron.

RSS feeds: Main feed; Forums feed

Site features: Geekzone BI dashboard; Geekzone Badges; Geekzone Status Page

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising; Trademark and copyright