[CentOS-announce] CESA-2016:2098 Important CentOS 7 kernel Security Update
[CentOS-announce] CESA-2016:2098 Important CentOS 7 kernel Security Update Johnny Hughes johnny at centos.org Tue Oct 25 11:17:10 UTC 2016 Previous message: [CentOS-announce] CEBA-2016:2096 CentOS 5 tzdata BugFix Update Next message: [CentOS-announce] CESA-2016:2105 Important CentOS 6 kernel Security Update Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] CentOS Errata and Security A
Dirty COW and clean commit messages [LWN.net]
LWN.net needs you!Without subscribers, LWN would simply not exist. Please consider signing up for a subscription and helping to keep LWN publishing We live in an era of celebrity vulnerabilities; at the moment, an unpleasant kernel bug called "Dirty COW" (or CVE-2016-5195) is taking its turn on the runway. This one is more disconcerting than many due to its omnipresence and the ease with which it
“Most serious” Linux privilege-escalation bug ever is under active exploit (updated)
A serious vulnerability that has been present for nine years in virtually all versions of the Linux operating system is under active exploit, according to researchers who are advising users to install a patch as soon as possible. While CVE-2016-5195, as the bug is cataloged, amounts to a mere privilege-escalation vulnerability rather than a more serious code-execution vulnerability, there are seve
[PATCH 3.10 16/16] mm: remove gup_flags FOLL_WRITE games from __get_user_pages()
[PATCH 3.10 16/16] mm: remove gup_flags FOLL_WRITE games from __get_user_pages() From: Linus Torvalds <torvalds@linux-foundation.org> commit 19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619 upstream. This is an ancient bug that was actually attempted to be fixed once (badly) by me eleven years ago in commit 4ceb5db9757a ("Fix get_user_pages() race for write access") but that was then undone due to problem
An important set of stable kernel updates [LWN.net]
The 4.8.3, 4.7.9, and 4.4.26 stable kernel updates have been released. There's nothing in the announcements to indicate this, but they all contain a fix for CVE-2016-5195, a bug that can allow local attackers to overwrite files they should not have write access to. So the "all users must upgrade" message seems more than usually applicable this time around. (Log in to post comments)
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
rpms/kernel.git - git.centos.org
RHSA-2016:2098 - Security Advisory
mm: remove gup_flags FOLL_WRITE games from __get_user_pages() · torvalds/linux@19be0ea