Softpedia >News >Linux >Open Source Software
Softpedia Homepage   

Linux Kernel 2.6.22.4 Released

Fixes "parent process death signal" vulnerability!

Aug 21, 2007 09:47 GMT  ·  By
Tux
   Tux

The 2.6.22.4 version from the 2.6 stable Linux kernel branch was released last night and it fixes an important vulnerability that allowed an unprivileged local user to send arbitrary signals to a child process despite security restrictions:

"This fixes a vulnerability in the "parent process death signal" implementation discoverd by Wojciech Purczynski of COSEINC PTE Ltd. and iSEC Security Research.", stated Greg Kroah-Hartman.

In a sane environment, non-root users can't send signals to processes running with different UID, but this vulnerability found in the Linux kernel by Wojciech Purczynski, allowed any local user to bypass security restrictions and send arbitrary signals to any child process executed by the user.

For more information about this vulnerability please go here.

Changes from version 2.6.22.3 to 2.6.22.4:

■ Reset current->pdeath_signal on SUID binary execution (CVE-2007-3848)

The 2.6.22 Linux kernel includes features and drivers such as:

■ New Slab allocator: SLUB ■ New Wireless stack ■ New Firewire stack ■ Signal/timer events notifications through file descriptors ■ Blackfin architecture ■ UBI ■ Secure RxRPC sockets ■ Process footprint measurement facility ■ utimensat()

Graphic drivers:

■ pm3fb: Preliminary 2.4 to 2.6 port ■ New framebuffer driver (vt8623fb) for VIA VT8623 ■ Hecuba framebuffer driver ■ arkfb: new framebuffer driver for ARK Logic cards ■ atmel_lcdfb: AT91/AT32 LCD Controller framebuffer driver ■ Add Sun XVR-500 framebuffer driver. (commit) and Sun XVR-2500 framebuffer driver

Network drivers:

■ Mellanox ConnectX InfiniBand adapters driver ■ Marvell Libertas 8388 802.11b/g USB driver ■ zr364xx V4L2 driver for USB webcams based on the zr364xx chipsets

The Linux Kernel is the essential part of all Linux Distributions, responsible for resource allocation, low-level hardware interfaces, security, simple communications, and basic file system management.

Linux is a clone of the Unix operating system, initially written from scratch by Linus Torvalds, assisted by a loosely-knit team of hackers across the Net. It aims to achieve POSIX and Single UNIX Specification compliance.

You can download the Linux kernel now from Softpedia.