Slashdot Mirror


Linux 2.4.24 Release Fixes Root Vulnerability

diegocgteleline.es writes "Linux Kernel 2.4.24 has been released and is available on kernel.org. It seems there's a bug in the mremap(2) system call, where a local user can get root privileges.The new version has been released only with the most important bugs fixed - the rest of the changes have been postponed (those changes include the XFS filesystem)."

10 of 436 comments (clear)

  1. Linux's greatest vulnerability by Anonymous Coward · · Score: -1, Troll

    is that free software zealots are assholes. FP dicksuckers.

    1. Re:Linux's greatest vulnerability by Anonymous Coward · · Score: -1, Troll

      Linux. What is that all about...

      Gay sex. Rough gay sex, in contrast to the sissy limp wrist velour soft lighting lubricated gay sex that Mac users indulge in.

  2. Linux has uptimes of 2 weeks by krog · · Score: -1, Troll

    ...because that's the greatest length of time you can spend before having to patch. Either that, or get r00ted by some slope in Outer Mongolia.

    BSD is a much better choice if you like your computer to run without intervention.

    1. Re:Linux has uptimes of 2 weeks by Anonymous Coward · · Score: -1, Troll

      Hey, don't leave out Windows 2000 Advanced Server. I have to fix my Linux server every other fucking day because it keeps breaking. But my nice Windows server keeps chugging along happily under heavy load. Last time I checked my Linux box was up for 2 days, while the Windows server was up for 30 days, even with auto-update running every day. Seems to me that Windows requires much less maintanence than Linux, which is probably why Microsoft says that Windows has a much lower total cost of ownership (TCO) than a UNIX system (you can hire less admins with Windows). That's good for business, especially small startups which are highly concerned with costs.

  3. Re:This is why I love free (as in beer) software.. by irc.goatse.cx+troll · · Score: 1, Troll

    You confuse Linux community with Open Source community. OpenBSD is also opensource, but that doesn't mean he announced the local vulns out there that would allow any user to bring down your server. You had to complain on the obsd mailinglist and have someone send you a patch, which is really pretty sad.

    --
    Pain lasts, kid. Its how you know you're alive. Sometimes I think this growing up thing is just pain management-TheMaxx
  4. Re:Can't Wait! by Anonymous Coward · · Score: 0, Troll

    yawn.....

    convinced of what you say?

    why don't you show us the info that has so-called convinced you.

    on the other hand mr. 578650....don't bother.

    oh and it's not that i'm bothered by pro/anti microsoft either way...(i'm typing this from xp)...it's just that your post almost insists that i give a shit.

    and i don't.

  5. Re:Argh, just finished 2.4.23 went back from 2.6 by Anonymous Coward · · Score: -1, Troll

    Make sure you remove the LPT joystick converted and use a 2600-compatible paddle that interfaces with your Firewire port. That should shave off some seconds from the map loading.

    Make sure that you have disabled Punkbuster and that Snipers are issued only 10 bullets at start. That should increase effiency.

    Have you been able to compare times with a Windows NT4 server?

    Hope this helps.

  6. Re:Article title misleading... by Anonymous Coward · · Score: -1, Troll

    Wow, 70% of the Linux userbase uses the 2.2 series?

  7. Re:2.4.x? by mentin · · Score: 1, Troll

    Interesting. Yesterday we flamed MS for dropping support of Windows 98, which is 5 years old, and today we are proposing to drop support of 2 weeks old kernel.

    --
    MSDOS: 20+ years without remote hole in the default install
  8. Re:we got r00t, d00d!!! by parksie · · Score: 0, Troll

    Some patches would undo other patches and one of my friends ran Windows Update and it broke his ability to connect to the Internet.

    That's probably the most useful patch MS ever included in Windows Update.