Linked by Jordan Spencer Cunningham on Fri 14th Aug 2009 02:29 UTC
It's the end of the world. Again. According to some Linux developers and security researchers, a bug in the Linux kernel has just been uncovered that makes just about every distribution utilizing kernel 2.4 and 2.6 on just about all architectures since May of 2001 vulnerable to a certain kind of attack.
Permalink for comment 378706
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Member since:
2005-08-07
That wasn't a kernel bug, and wasn't even a bug that effected upstream - you didn't even realize it was actually SSL, not SSH...
That bug was specific to distros based on Debian, because the maintainer of SSL decided to cut corners to make maintenance easier for himself.
Anyway, when Microsoft finally patches the UAC bug that allows escalated privileges - apparently by design - then Windows users can feel free to point at things like this in Linux.
Since Microsoft has stated the flaw is there on purpose, it'll never get patched... this flaw is already patched, it just needs to be applied to current installations.