Welcome to WebmasterWorld Guest from 34.239.158.107

Forum Moderators: bakedjake

Message Too Old, No Replies

New kernel vulnerability

Cve-2014-9322

     
6:46 pm on Dec 18, 2014 (gmt 0)

Administrator from US 

WebmasterWorld Administrator not2easy is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Dec 27, 2006
posts:4406
votes: 316


A note from my new host tells me there is a
severe kernel vulnerability that has just been announced: CVE-2014-9322. It is paramount to your server's security that this update be applied immediately, because it allows an unprivileged user with access to your server the ability to obtain root privileges within your server.


They've already applied the patch. I just wanted to share this information. A good place for more information: [web.nvd.nist.gov...]
11:31 am on Dec 21, 2014 (gmt 0)

Senior Member from KZ 

WebmasterWorld Senior Member lammert is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Jan 10, 2005
posts: 2952
votes: 35


As far as I can see it you will be only vulnerable for this bug if your server allows shell access to other users. If these users execute a specially crafted executable, the vulnerability will be triggered. This might be a problem for people on shared hosting, but less for those who operate a dedicated server.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members