Archive for the 'Security' Category

Security: ptrace bug (CVE-2006-1052)

by James Morris |  Monday, March 13th, 2006

Stephen Smalley has announced a bug in the SELinux kernel code with security implications. At this stage, it appears to be limited in scope as the underlying DAC controls will still operate and exploitation is rather convoluted. A simple patch has been added to Andrew Morton’s -mm tree, while a cleaner but more invasive fix is planned for 2.6.17.

Vendor updates to follow.