Linux devs fix nasty vulnerability dating back half a decade
An exploitable bug sitting in a popular Linux kernel module has been found after five years. A patch is finally available, experts say.
An exploitable bug sitting in a popular Linux kernel module, has been found after five years, researchers have claimed.
Detailing the findings in a blog post, researcher Samuel Page from cybersecurity firm Appgate said the flaw was a stack buffer overflow, found in the kernel networking module for the Transparent Inter-Process Communication (TIPC) protocol.
Page describes TIPC as an IPC mechanism designed for intra-cluster communication. “Cluster topology is managed around the concept of nodes and the links between these nodes,” he says.