Contributed by Dengue on from the proactive-security dept.
The USER_LDT kernel option allows an attacker to gain access to privledged area's of kernel memory. This option is not on by default.Patch 023 has been released. To quote errata.html :
Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun leading to a remote DoS. This option is not on by default.Information on patching your systems is in the FAQ .
(Comments are closed)