Jump to content

Clever attack exploits fully-patched Linux kernel


{BBI}Nexus{BBI}
 Share

Recommended Posts

A recently published attack exploiting newer versions of the Linux kernel is getting plenty of notice because it works even when security enhancements are running and the bug is virtually impossible to detect in source code reviews...

 

Read more at The Register.

 

Any security experts here who can put this into some understandable plain speaking context?

Link to comment
Share on other sites

The exploit works only when a security extension knows as SELinux, or Security-Enhanced Linux, is enabled. Conversely, it also works when audio software known as PulseAudio is installed.

 

I always knew Pulseaudio is evil, I'm quite surprised though, that it can trigger a kernel vulnerability as it's running in userland AFAIK.

 

Edit: apparently it's related to some SUID binaries (of pulseaudio I imagine).

Edited by tux99
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
 Share

×
×
  • Create New...