Linode.com Forum

Xan

You may have heard of the new kernel exploit that recently became public.

I just tried the exploit code on the Linode to see if it was vulnerable. It doesn't give me a root login, but it does hang the "machine", pretty hard, too. Took a few minutes for the Lish-initiated reboot to take effect; I thought I was going to have to fill a support ticket.

Best case scenario seems to be a graceless shutdown, so I would have to stamp it Not Recommended.

Xel · Senior Newbie Joined: 15 Jun 2006 Posts: 5

Yea... Listen to what he said... Because.... yea...

--Xel

caker · Posted: Sun Feb 10, 2008 5:03 pm Post subject:

As soon as the kernel devs settle on a fix, I'll be releasing new kernels...

-Chris

OverlordQ · Senior Member Joined: 04 Jun 2004 Posts: 256

ONe of the 'exploits' patch it Smile

Find it in the debian bug ticket

anderiv · Senior Member Joined: 27 Apr 2004 Posts: 174

I believe GKH just committed the fix for this into 2.6.24.2:

caker · Posted: Mon Feb 11, 2008 11:47 am Post subject:

http://www.linode.com/forums/viewtopic.php?t=3104

-Chris

reallove · Posted: Mon Feb 11, 2008 12:47 pm Post subject:

(asking maybe a stupid question)
how can I upgrade to the latest 2.6.24.2 ,without recompiling myself the kernel ?

anderiv · Senior Member Joined: 27 Apr 2004 Posts: 174

You can select what kernel you're booting in your profile config in LPM (the members section of linode.com).

-erik

reallove · Posted: Mon Feb 11, 2008 12:51 pm Post subject:

thought so,but my latest 2.6 series is 2.6.18.8 (domU linode5).

anderiv · Senior Member Joined: 27 Apr 2004 Posts: 174

Ahh - you're on Xen. The kernel caker just released was a UML kernel. I haven't heard when the Xen kernel will be updated.

reallove · Posted: Mon Feb 11, 2008 12:53 pm Post subject:

considering the big impact of this exploit it would be great to have one also on xen Smile

caker · Posted: Mon Feb 11, 2008 1:59 pm Post subject:

For you Xen people:

http://www.linode.com/forums/viewtopic.php?t=3105

-Chris