Linux vendors rush to patch privilege escalation flaw after root exploits emerge
- 25 January, 2012 05:23
- Comments
Linux vendors are rushing to patch a privilege escalation vulnerability in the Linux kernel that can be exploited by local attackers to gain root access on the system.
The vulnerability, which is identified as CVE-2012-0056, was discovered by Jüri Aedla and is caused by a failure of the Linux kernel to properly restrict access to the "/proc/<pid>/mem" file.
According to Carsten Eiram, the chief security specialist at vulnerability research firm Secunia, the flaw was introduced in the Linux kernel code in March 2011 and affects versions 2.6.39 and above. "Any Linux distributions providing these kernel versions should be vulnerable," Eiram said.
Linus Torvalds submitted a patch on the official Linux kernel repository on Jan. 17, but before Linux vendors had a chance to apply it for their distributions, proof-of-concept exploit code already appeared online.
One of the most complete exploits for CVE-2012-0056 is called mempodipper and was written by security researcher and programmer Jason A. Donenfeld. Mempodipper works around various factors that could limit the impact of this vulnerability in Linux distributions like Fedora or Gentoo.
Ubuntu and Red Hat have already released patches to address this vulnerability and other vendors are expected to follow in their footsteps soon. "We recommend that system administrators apply these patches," Eiram said.
Donenfeld published a detailed article about how the vulnerability can be exploited on his blog on Sunday, which served as inspiration for other exploit writers. One of them was Jay Freeman, better known online as saurik, the creator of the Cydia app store for jailbroken iPhones, iPads and other iOS devices.
Freeman used Donenfeld's instructions to create a local root exploit for Android 4.0 (Ice Cream Sandwich), which he dubbed mempodroid. Several members of the XDA Developers community already confirmed that the exploit works, but advised users who are not familiar with adb shell to wait for a simpler implementation.
Samsung Galaxy Nexus and ASUS Transformer Prime are the only devices that run Android 4.0 at this time, and the Galaxy Nexus has built-in rooting capabilities. However, mempodroid might open the door for rooting other devices that will eventually get updated to Ice Cream Sandwich.
"While Android itself is open, many of the devices that use it are not, and the Transformer Prime has a locked bootloader, making exploits such as this required to install custom software," Freeman said in the exploit's release notes.
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
- Bookmark this page
- Share this article
- Got more on this story? Email CIO
- Follow CIO on twitter
- Think print, Think security - Plugging the printer security gap
- Guidance for Calculation of Efficiency (PUE) in Data Centers
- Best Practices for Secure Enterprise Content Mobility
- 10 Mobile Security Requirements for the Bring Your Own Device (BYOD) Enterprise
- Botnets: The dark side of cloud computing
-
Swedish e-commerce startup's execs linked to NYC sex crime
-
Face Time - Interview with John Brennan and Robert DiStefano
-
How to implement next-generation storage infrastructure for Big Data
-
Pfizer's Future Depends on IT Transformation
-
Pfizer's Future Depends on IT Transformation
-
How progressive companies are using social technologies
Social networks and collaborative technologies are now commonplace in many workplaces. Having first been used “on the quiet” by highly-networked employees, in increasing numbers they are now being proactively used by businesses keen to connect more effectively with their internal and external audiences. Web collaboration is now viewed as critical to company success and as having multiple benefits and applications to the business. Read on. -
Optimizing Data Quality in the Enterprise - How to Tackle Your Bad Information
Data quality – the measure of data accuracy, completeness, and consistency across a business – has become the core focus of information management efforts among many of today’s organizations. Problems with data quality continue to plague corporations of all types and sizes. In this paper, we will discuss some techniques companies can implement to enhance data quality across the entire enterprise. We will also highlight data quality management solutions, which provide businesses with the ability to effectively and economically enhance the correctness, completeness, and consistency of information in each and every system within their technology infrastructure. -
Becoming a Social Business
As global business accelerates ever faster and companies work to quickly respond to customer demands, competitive threats and rapidly evolving trends, the richness and efficiency of social collaboration plays a key role in enabling future success. The challenge then is finding the best approach. Read on.
-
Microsoft Office
-
Computers for Seniors for Dummies, 2nd Edition
-
Windows 7 for Seniors for Dummies®
-
Office 2007 All-In-One Desk Reference for Dummies
-
Excel 2007 All-In-One Desk Reference for Dummies
-
Windows 7 for Dummies® Dvd+book Bundle
-
Teach Yourself Visually Windows 7
-
MYOB Software for Dummies 6E Australian Edition
-
Windows 7 for Dummies®








Comments
Post new comment