Kernel.org's road to recovery
Posted Oct 10, 2011 22:41 UTC (Mon) by malor
In reply to: Kernel.org's road to recovery
Parent article: Kernel.org's road to recovery
Try the security alert from five days ago:
From RedHat errata:
* Flaws in the AGPGART driver implementation when handling certain IOCTL commands could allow a local user to cause a denial of service or escalate their privileges. (CVE-2011-1745, CVE-2011-2022, Important)
* An integer overflow flaw in agp_allocate_memory() could allow a local user to cause a denial of service or escalate their privileges (CVE-2011-1746, Important)
Bunch of other stuff too, but there's two likely local root exploits from October 5. Took me about ten minutes to spot, and that's only because I had to look through some lesser CVEs LWN posted about twenty minutes ago.
It would have proved the point even more thoroughly to have gotten a local root exploit today, but five days ago, I think, is adequate.
to post comments)