Security Week in Review (2008-02-10)

Sunday, February 17. 2008

Security Week in Review (2008-02-10)

Kernel Local Root
The most exciting thing to happen last week was probably all the attention CVE-2008-0600 got. This flaw could allow a local user to gain root privileges, and things such as SELinux wouldn't stop it. The significant part isn't the local root in itself, but rather that there were working exploits available in the wild. There are always kernel privilege escalation flaws, but there are not always easy working exploits.

This was of course fixed quite promptly in both Red Hat Enterprise Linux and Fedora.

Posted by Josh Bressers in Security Week in Review at 22:00 | Comments (2) | Trackbacks (0)

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

> This flaw could allow a local user to gain root privileges, and things such as SELinux wouldn't stop it.

Selinux does not (and can not) fixe kernel bugs.

#1 me on 2008-02-18 01:03 (Reply)

That is correct. SELinux won't prevent kernel bugs, but it could affect the exploit path. Depending what sort of setup the exploit needs, SELinux could help prevent this.

#1.1 Josh Bressers (Homepage) on 2008-02-18 07:25 (Reply)

Add Comment

Name
Email
Homepage
In reply to
Comment	Enclosing asterisks marks text as bold (word), underscore are made via _word_. Standard emoticons like :-) and ;-) are converted to images. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above: BBCode format allowed
	Remember Information? Subscribe to this entry