Linux Kernel Point Release Fixes Flaws

Wednesday Mar 29th 2006 by Sean Michael Kerner
Share:

A potential vulnerability is quickly plugged as kernel developers issue the first point release of the 2.6.16 kernel.

It's a familiar refrain. A new Linux kernel is released and a short time later it's augmented by a point release that addresses a potential security vulnerability.

The new 2.6.16.1 Linux kernel point release follows the 2.6.16 release by a week and includes various bug fixes, as well as a fix for a potential security vulnerability.

The potential vulnerability is called the "Linux Kernel IP ID Value Increment Weakness" by security firm Secunia and carries a "not-critical" rating.

The "weakness" could have potentially allowed for unauthorized system information disclosure, as well as a security restriction bypass. The problem is due to an error in the "ip_push_pending_frames()" function, which has been corrected in the new point release.

This article was first published on InternetNews.com. To read the full article, click here.

Share:
Home
Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved