Two new vulnerabilities found in the Linux Kernel

By Derek Sooman on
Linux heads will want to know about two new vulnerabilities found in the Linux Kernel. The first refers to an integer overflow error within the "do_replace()" function in Netfilter. This can be used to cause a buffer overflow. The second, an insufficient memory allocation in "drivers/usb/gadget/rndis.c" when handling NDIS response to OID_GEN_SUPPORTED_LIST, can cause a kernel memory corruption. The solution in both cases is to upgrade to Kernel 2.6.16, which does not have this issue.

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.