Slashdot Mirror

← Back to Stories (view on slashdot.org)

"Month of Kernel Bugs" Project Head Interviewed

Posted by CowboyNeal on Saturday November 11, 2006 @04:30AM from the getting-to-know dept.

An anonymous reader writes "November has been labelled the 'Month of Kernel Bugs' in security circles. The Month of Kernel Bugs began on November 1, with the publication of a vulnerability in Apple's AirPort drivers. SecuriTeam blogs did an interview with LMH, who hosts the project."

1 of 42 comments (clear)

Min score:

Reason:

Sort:

Re:Apple flaw? No. by spinja · 2006-11-11 05:38 · Score: 5, Informative

The bug I found is not due to the card "complying with a standard", its because the first-generation Airport driver (the latest one available at that), has a bug that allows someone to run code in your kernel from a distance. Maybe I missed the "ieee80211b-pwned" spec, but this doesn't seem like good behavior.

Why is that Apple supporters are in such denial about their favorite products having security flaws? This bug was one of many in the Airport drivers and one an even bigger set of wireless exploits that we plan on releasing. A Broadcom bug was released today which likely affects more systems than Apple has ever shipped.