[aklug] Re: 0-day in Ubuntu....

Mitigations & Conclusions

The vulnerability affects any Linux Kernel version 3.8 and higher. SMEP & SMAP will make it difficult to exploit as well as SELinux on android devices. Maybe we’ll talk about tricks to bypass those mitigation in upcoming blogs, anyway the most important thing for now is to patch it as soon as you can.

Thanks to David Howells, Wade Mealing and the whole Red Hat Security team for that fast response and the cooperation fixing the bug.

Perception Point Research Team

From:

http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/



From: James [mailto:marblemunkey@gmail.com]
Sent: Tuesday, January 19, 2016 12:48 PM
To: Peter Barclay PCNI <admin@pcni.us>
Cc: aklug@aklug.org
Subject: Re: [aklug] 0-day in Ubuntu....

Any idea if this impacts ARM machines?

On Tue, Jan 19, 2016 at 4:21 PM, Peter Barclay PCNI <admin@pcni.us<mailto:admin@pcni.us>> wrote:
Just FYI for the group at large…

http://www.cyberciti.biz/faq/linux-cve-2016-0728-0-day-local-privilege-escalation-vulnerability-fix/



________________________________
No virus found in this message.
Checked by AVG - www.avg.com<http://www.avg.com>
Version: 2016.0.7303 / Virus Database: 4489/11380 - Release Date: 01/11/16
Internal Virus Database is out of date.
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Tue Jan 19 11:10:16 2016