Linux Kernel '/fs/aio. c' local information leakage Vulnerability
Release date:
Updated on:
Affected Systems:
Linux kernel
Description:
--------------------------------------------------------------------------------
Bugtraq id: 68176
CVE (CAN) ID: CVE-2014-0206
Linux Kernel is the Kernel of the Linux operating system.
In the AIO subsystem of Linux Kernel, The aio_read_events_ring () function does not properly filter the AIO ring packet header in the user space. Unauthorized Local Users can exploit this vulnerability to obtain the memory of the Kernel and other processes at will.
How to install Linux 3.11 Kernel on Ubuntu
The Ubuntu 13.10 (Saucy Salamander) Kernel has been upgraded to Linux Kernel 3.10 RC5
Linux Kernel 3.4.62 LTS is now available for download
How to install Linux kernel 13.10 On Ubuntu 3.12
<* Source: Mateusz Guzik
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.kernel.org/
Http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit? Id = a31ad1_bed817aa25f8830ad23e1a0480fef797
Linux Kernel: click here
Linux Kernel: click here
This article permanently updates the link address: