Welcome to WebmasterWorld Guest from 126.96.36.199
Forum Moderators: bakedjake
The Linux kernel folks "silently" pushed out a patch for a critical privilege escalation bug this week. It was for a hole that could allow an attacker to execute code at the root level from any GUI application. The patch took two months after the flaw was reported on June 17, researchers says. SUSE engineers claim they originally found it, reported it and patched it in SUSE way back in September, 2004, says the security blog The H. But the SUSE patch never made its way into the kernel at that time.
The kernel org says the bug has now been addressed in versions 188.8.131.52, 184.108.40.206, 220.127.116.11 and 18.104.22.168 of the kernel. It is now up to the distro makers to push the fix out to their users.