Serious Kernel flaw patched.
Posted: 28 Jan 2016, 00:39
There has been a serious Kernel flaw since 2012 for Kernel 3.8 and higher.
It is known as the kernel vulnerability CVE-2016-0728.
This can give users of the Linux system root access - that they are not supposed to have. Then again it is not all that serious because an attacker would require local access to exploit the vulnerability on a Linux server.
Manjaro is patched with a regular update and it is likely that most distros will do the same.
Servers with kernels lower than 3.8 are not at risk.
What could be worse is that Android is affected by this too - and it is not clear to me whether the update procedures on smartphones are good enough.
A malicious App would be needed though so common sense will probably be sufficient.
More here
It is known as the kernel vulnerability CVE-2016-0728.
This can give users of the Linux system root access - that they are not supposed to have. Then again it is not all that serious because an attacker would require local access to exploit the vulnerability on a Linux server.
Manjaro is patched with a regular update and it is likely that most distros will do the same.
Servers with kernels lower than 3.8 are not at risk.
What could be worse is that Android is affected by this too - and it is not clear to me whether the update procedures on smartphones are good enough.
A malicious App would be needed though so common sense will probably be sufficient.
More here