Linux Kernel 2.6.11.9 Released

GnuTer writes "Greg KH has just announced the availability of the newest Linux kernel release, 2.6.11.9. This version fixes various local vulnerabilities and exploits. You can get it from the usual mirrors at kernel.org/mirrors."

Not too clear on the requirements

[Mad+Merlin]

The advisory wasn't entirely clear on who this affected, it's clear that it's an issue with reading or writing a DVD drive (from the /dev/hdc found in the code and the name of the function), but what privledges does the attacker need to use this exploit? Raw read/write to a DVD drive? Raw read only to a DVD drive? Plain read only? Anybody know for sure?

Only a typo.

[Saiyine]

It's obviusly only a typo, as the urls link to the correct kernel version.

Real problem are the (paid!) editors that don't even check the submissions... So forget about TFA!

paranoia

[bzipitidoo]

I downloaded 2.6.11.10 yesterday. When I saw this story, my first instant thought was that I'd been tricked, perhaps by a corrupt DNS cache that pointed me to a bogus www.kernel.org. Maybe I should actually check those digital signatures. Good thing I haven't untarred and compiled 2.6.11.10 yet.

But now, reading all these posts that point out the story is mistaken, and should say 2.6.11.10, not 2.6.11.9, I feel much better. So, uh, how do you check those signatures?